When it comes to spam, IBM's SoftLayer is the host with the most

A Brazilian malware gang is at least partly to blame, according to nonprofit Spamhaus

IBM may be the fastest-growing vendor in the worldwide security software market, but it's also the owner of the world's largest source of spam.

That's according to a report by security expert Brian Krebs, who called out the company's SoftLayer subsidiary for being "the Internet’s most spam-friendly" service provider.

SoftLayer currently holds the top position on antispam nonprofit Spamhaus.org's list of the world’s worst spam support ISPs, which it defines as the ISPs with the worst abuse departments and "consequently the worst reputations for knowingly hosting spam operations."

As of Thursday, there were 685 known spam issues associated with SoftLayer, Spamhaus said. Unicom-sc, which is next down on the list, has a relatively meager 232 such issues.

Though it has traditionally been "a responsible ISP," including contributing to the security and antispam industries, SoftLayer seems to have recently fallen prey to a Brazilian malware gang, Spamhaus wrote in a blog post earlier this month.

"We believe that SoftLayer, perhaps in an attempt to extend their business in the rapidly growing Brazilian market, deliberately relaxed their customer vetting procedures," Spamhaus suggested. "Cybercriminals from Brazil took advantage of SoftLayer's extensive resources and lax vetting procedures. In particular, the malware operation exploited loopholes in Softlayer's automated provisioning procedures to obtain an impressive number of IP address ranges, which they then used to send spam and host malware sites."

Cloudmark, another global spam tracker, confirms the problem, according to an update Krebs made to his post later in the day.

Specifically, Cloudmark says SoftLayer’s network was the largest source of spam in the world in the third quarter of 2015, Krebs wrote. A full 42 percent of all outbound email from SoftLayer was spam, it reportedly said.

IBM is "one of the more recognizable and trusted names in technology and security," Krebs wrote. "Physician: Heal Thyself!"

SoftLayer, which was acquired by IBM in 2013, responded to a request for comment with a statement via email.

"IBM has removed all known spam accounts identified by the Spamhaus Project in this isolated spike," it said. "We continue to aggressively work with authorities, groups like Spamhaus and IBM Security analysts to eliminate further activity like this."

Spam is not just an annoyance but also a primary vector for phishing scams and malware, said Tim Erlin, director of IT security and risk strategy at Tripwire.

At the heart of the problem for ISPs is abuse of automation, Erlin added.

"Attackers are able to rapidly automate the setup of new domains, use them and replace them quickly when they are taken down," he explained. "Effectively, spammers use these productivity tools to run what amounts to a highly resilient business.”

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags IBMnetworksoftwarespamSpamhausBrian KrebsIBM SoftlayerUnicom-scBrazilian malware gang

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Katherine Noyes

IDG News Service
Show Comments

Brand Post

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Luke Hill

MSI GT75 TITAN

I need power and lots of it. As a Front End Web developer anything less just won’t cut it which is why the MSI GT75 is an outstanding laptop for me. It’s a sleek and futuristic looking, high quality, beast that has a touch of sci-fi flare about it.

Emily Tyson

MSI GE63 Raider

If you’re looking to invest in your next work horse laptop for work or home use, you can’t go wrong with the MSI GE63.

Laura Johnston

MSI GS65 Stealth Thin

If you can afford the price tag, it is well worth the money. It out performs any other laptop I have tried for gaming, and the transportable design and incredible display also make it ideal for work.

Andrew Teoh

Brother MFC-L9570CDW Multifunction Printer

Touch screen visibility and operation was great and easy to navigate. Each menu and sub-menu was in an understandable order and category

Louise Coady

Brother MFC-L9570CDW Multifunction Printer

The printer was convenient, produced clear and vibrant images and was very easy to use

Edwina Hargreaves

WD My Cloud Home

I would recommend this device for families and small businesses who want one safe place to store all their important digital content and a way to easily share it with friends, family, business partners, or customers.

Featured Content

Product Launch Showcase

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?