- Image spam
Image spam is a kind of
E-mail spam where the message text of the spam is presented as a picture in animage file . Since most modern graphicalE-mail client software will render the image file by default, presenting the message image directly to the user, it is highly effective at circumventing normalE-mail filtering software .The basic rationale behind image spam is that it is difficult to detect using spam filtering software designed to detect patterns in text in the plain-text E-mail body. Attempts to filter text in image spam are easily defeated because
optical character recognition of text in image spam can be prevented using a variety ofobfuscation techniques which will not prevent the spam image from being read by human beings. This is the same phenomenon exploited byCAPTCHA s, but put to the ends of spammers, rather than to deter their activity.Obfuscation techniques can include:
* Blurring of text outlines
* Construction of the image from multiple image layers assembled within anHTML e-mail
* Use of animated image formats
* Random noise added to the image (also known as confetti) to prevent the detection of multiple similar images using hash algorithmsCurrently, the surest known countermeasure for image spam is to discard all messages containing images which do not appear to come from an already whitelisted E-mail address. However, this has the disadvantage that valid messages containing images from new correspondents must either be silently discarded, or that bogus "backscatter" bounce messages must necessarily be generated to the reply-to addresses in junk mail messages, enabling
denial-of-service attack s by spammers.Most mailers can also be configured to display pictures only when requested.
Wikimedia Foundation. 2010.
