900,000 ISP customers blacklisted

By Will Sturgeon
Special to CNET News.com

Share
- Digg
- Del.icio.us
- Reddit
- Facebook
- Google
- Newsvine
- Yahoo! Bookmarks
- Twitter
- Stumbleupon
E-mail
Print

Related Stories: MCI accused of harboring spammers
February 7, 2005; Zombie trick expected to send spam sky-high
February 2, 2005; Lycos Europe: 'Make love not spam'
November 30, 2004

More than 900,000 customers of U.K. Internet service provider Telewest have been blacklisted by one of the most powerful antispam groups on the Web.

The Spam Prevention Early Warning System (SPEWS), whose blacklist is referenced by many antispam controls, imposed the block in response to the high number of Telewest customers whose machines have become compromised and taken over for the purpose of sending spam.

Last month, Silicon.com revealed that some of Telewest's Blueyonder.co.uk home subscribers were sending hundreds of thousands of e-mails each day--a sure sign of an open relay, pumping out spam.

At the time, Matt Peachey, a managing director of IronPort, whose Senderbase system revealed the extent of Telewest's spam problem, told Silicon.com: "The ISPs know they're spamming, but they're reluctant to put things in place which block mail. With ISPs, it's not about what comes into their networks; it's about what goes out."

Despite such apparent warnings, a representative for Telewest told Silicon.com the company believes SPEWS' actions have been "a little heavy-handed."

IronPort's Peachey is inclined to agree. "I'm not surprised this has happened, but I am surprised at the number of IP addresses which have been blacklisted," he said.

Peachey said about 17,000 IP addresses on the Blueyonder.co.uk domain are pumping out spam, yet the SPEWS blacklisting applies to more than 900,000.

"This is why blacklists are so problematic," Peachey said. "There will be a lot of people who are blacklisted who have been doing absolutely nothing wrong."

However, Telewest is holding back from any further criticism of SPEWS.

"We have to let them get on with what they do and concentrate on our own game," the representative said. He accepted that Telewest must take some responsibility for the situation reaching such a crisis point but said "it's an industry issue which every ISP suffers."

The Telewest representative said: "We're doing our best to contact customers, and we are talking them through physically cleaning up their PCs."

"Later this year we are launching a very comprehensive security package for our customers including a free firewall, free antispam and free antivirus," he added.

Currently Blueyonder.co.uk is the ninth in the Senderbase list of domains generating e-mail--two places behind Hotmail and two ahead of America Online.

According to Senderbase, Blueyonder.co.uk addresses are generating 90.4 million e-mails per day. The company confirmed it has around 700,000 customers, with updated figures due for release on Thursday.

Will Sturgeon of Silicon.com reported from London.

See more CNET content tagged:
Telewest, Ironport Systems Inc., Internet Service Provider, anti-spam, spam

Add a Comment (Log in or register) 9 comments

Giving users free software is not enough!
by hadaso May 10, 2005 8:13 AM PDT: Giving users free software is not enough!

What ISPs should do is monitor for outgoing mail in large quantities going directly out of PCs or through their servers. Monitor their servers for exceptional bounce rates fromspecific users, scan outgoing email for spam, or at least sample outgoing email using automatic tools, and then automatically increase sampling when suspisious behaviour is found.

But most important: they should make subscribers aware that there are possible problems, that these problems may affect both their own computers and other people's computers, and that good security measures are important both as self protection and as responsible citizenship (netizenship), and they should promise the subscribers that they will alert them when there's trouble and help them resolve it.

The two most important things here are awareness and trust: subscribers should be aware of the possible problems, and trust their ISP both to tell them when something's wrong and to help them resolve the problem.; Reply to this comment

Spam Blacklist
by System Tyrant May 10, 2005 8:45 AM PDT: It goes to show that blacklist don't really work that well. You aren't going to stop spammers by blacklisting an IP address. What you really achieve is angering 900,000 users who are victims of spammers.

I believe if things don't change those who use the services of spam blacklisters are going to feel the sting of a backlash. It really comes down to the ISP though. They need to monitor their users without being intrusive.

The funny thing about blocking IP addresses and not domain names is that the spammer just moves to another server that isn't blocked while those on the blacklisted IP continue to suffer.

The amount of "colateral damage" done by blacklist services is going to become unacceptable at some point (if it already isn't) then what are we going to do?; Reply to this comment View reply
Processing

Blacklist worked well ...
by My-Self May 10, 2005 9:08 AM PDT: If the ISP decided to let the situation worsen to the point where 17000 of their IP are sending spam, then there is a major problem. By blacklisting them, SPEWS forced them to take action, and since they know they're guilty as charged, they don't even complain.
May that be a lesson for all other ISP who neglect to take preventive measures so that their network does not become a major spamming platform.; Reply to this comment View reply
Processing

Blacklists work, focus on the real culprit
by Razzl May 12, 2005 12:09 PM PDT: There are any number of major isp's out there who are taking appropriate measures to keep their customers from becoming spam zombies--customers of those who aren't should direct their ire at their isp, not at the blacklist. Blacklisting shuts off the zombies from that source and makes the isp correct the problem. Focus on the real culprit here, which is the isp, not on the blacklist, which is part of the medicine that cures the problem.; Reply to this comment

Latest tech news headlines

IBM invests in business partners' training
Posted in News - Business Tech by Colin Barker

October 11, 2008 5:01 PM PDT
Navy charters kite-powered cargo ship to deliver equipment
Posted in Military Tech by Mark Rutherford

October 11, 2008 11:03 AM PDT
FCC report negates free Internet interference claims
Posted in News - Wireless by Michelle Meyers

October 11, 2008 10:41 AM PDT
See all headlines

Resource center from News.com sponsors

You Need The Speed of Norton 2009

Introducing Norton Internet Security™2009

With one-click, one-minute install, under 8MB of memory usage and fewer, shorter scans, it's the fastest security suite anywhere. Norton. Smart Security, Engineered for Speed. Get a FREE trial today!

The Fastest Security Suite Anywhere

Experience the revolutionary Norton Internet Security™ 2009. With Norton™ Insight, a new feature, you get precision security that targets only at risk files for fewer, faster, shorter scans

Win a Trip to Space!*

Enter the Blast Off with Norton Sweepstakes for your shot at a trip to space. You could experience being fast and weightless, just like the new Norton 2009. *No purchase necessary; click for full details.

FREE Trial!

Act now to get your FREE trial of Norton Internet Security 2009. Try it for the protection. Love it for the speed

Norton Safe Web NEW!

A community-based system that rates web site safety

Norton Labs NEW!

Users can download new security technologies and share input directly with developers. Help us shape our future products!

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

More feeds available in our RSS feed index.

Inside CNET News

Scroll Left Scroll Right

News - Business Tech
IBM invests in business partners' training
A business development fund aims to encourage its largest partners to take up more skills training around data centers.
Gallery
Photos: Top 10 reviews of the week
Military Tech
Navy charters kite-powered cargo ship to deliver equipment
The use of this new breed of sailing ship could reduce fuel costs by 20 to 30 percent, according to the ship's owners.
Coop's Corner
Ellison's mantra: Spend, baby, spend
It may be hell out there, but Oracle's chief tells shareholders the company still intends to shop for more acquisitions.
Video
Sprint launches Xohm WiMax
News - Wireless
FCC report negates free Internet interference claims
Report from commission engineers boosts plan to auction spectrum for free wireless Internet by dismissing concerns it would interfere with existing providers' signals.
Video
Talking with Newt Gingrich on tech, bailout
News - Politics and Law
President signs broadband data collection bill
The Broadband Data Act encourages wider collection of information regarding nationwide access to broadband.
News - Cutting Edge
Academics sink teeth into Yahoo search service
Yahoo hopes its Build Your Own Search Service program has piqued the interest of academic researchers. Next stop: start-ups.
Gallery
Photos: Cracking open Apple's revamped iPod Nano
Crossfade
The Streets, 'The Escapist': Free MP3 of the Day
Download a free MP3 of "The Escapist" courtesy of CNET Download Music.
Green Tech
Urban wind power inspired by ancient Persia
The shape of urban wind power continues to morph. The latest twist come from Windation, a company with a design inspired by centuries-old "wind catchers."