RSN™ Insight: A History Of Spam [Audio Podcast]
The NPR Radio Interview: Please Don’t Delete This Interview About Spam
Here is the complete Radio Interview:
Source: NPR Radio »
Introduction
Open up your email on any given morning and you might get two or three notes from friends — and twice as many from people trying to sell you energy pills, offshore real estate or virility enhancers.
And some promise riches: You’ve just won the Lithuanian National Lottery, which you cannot recall entering, or that a man in Kenya needs your help: “Please, sir, only you can help” to move $20 million through your bank account; all he needs is your routing number.
That’s spam. Not the meat-like loaf, but unbidden emails, many of them not even sent by actual people, but robot programs. And their volume is often much greater than the amount of real information people find in their inboxes.
In Spam: A Shadow History of the Internet, Finn Brunton, an assistant professor at the University of Michigan’s School of Information, explains how those unwanted emails make their way into our inbox.
Brunton talks about this daily irritation, its origins and ways to avoid online dangers with NPR’s Scott Simon.
Finn Brunton is an assistant professor at the University of Michigan’s School of Information.
Interview Highlights
On how a tiny island in the South Pacific become the center for spam
“It’s a marvelous story. Pitcairn Island, which is the least populated jurisdiction in the world, fascinated me because I was familiar with it only as an extremely minor historical event. It’s where the Bounty mutineers went when they needed to find an extremely remote place to hide. And I was shocked to learn that, per capita, Pitcairn Island was the world’s No. 1 source of spam. I was just wondering … how is this possible? What has happened is one of the computers on the island has been taken over by a malwareMalware Short for "malicious software," this term means computer viruses and other types of programs that cybercriminals use to disrupt or access your computer, typically with the aim of gathering sensitive files and accounts. program — so this island with 45 or 50 people is broadcasting spam without anyone consciously intending it.”
On how a Monty Python sketch became the name for all that unwanted email
“The old rule of thumb in media history was that the first private use for any new major communications technology is pornography. But somewhere, cheek by jowl with that, is humor. One of my favorite details about the history of the telegraph is how quickly an incredible subculture of jokes and gags and pranks and references began to proliferate among the telegraph boys who were actually managing the equipment.
“But indeed, in the case of the Internet, from very early on when it was just these early, often somewhat ragged or haphazard networks between computers mostly in academic settings, the graduate students who were using these machines — as soon as they were not required to use them for some professional purpose, as soon as they had an off hour to kill in the basement — started using them to replay old Monty Python routines — getting back to jokes.
“And of course one of the most famous Monty Python routines is the sort of spam chorus that the Vikings deliver in the made-up Green Midget Café in that sketch where that couple is trying to order something from the menu and everything has spam in it. So it sort of starts off as a joke, but the term very quickly becomes the universal term for anyone who’s doing that kind of annoying, jokey, time-wasting behaviorBehavior Behavior / Behavioral Actions Otherwise known as habits, behavior or behavioral actions are strategies to help prevent online exploitation that target behavior, such as social engineering of victims. Changing your behavior is the ONLY effective means to reduce or prevent scams. on these very early computer networks.”
On how spam can become far more than just a nuisance
“When you get a spam message, sometimes it’ll have an attachment and … it will be a message from a friend. And it’ll say, ‘Oh hey, could you take a look at this?’ And then you open it and it doesn’t seem to do anything; it’s just a bunch of weird symbols or it fails to open. And you assume something went wrong, I’ll just delete this and carry on with my day.
“When you’ve launched that, an exploit within the structure of the software that you’re using has quietly taken over your computer and it is using the computer’s broadband connection to quietly, in the background, without your knowledge, begin sending out spam messages following the instructions of a central network called a command and control system .
“So what that means if it costs you nothing to send 100 million messages and only some vanishingly small percentage of a percentage ever get through, well just send 100 million more, you know? And if you can get another 2,000 or 3,000 actually through, you can still make a viable business out of it.”
On how spam turns from a business to a criminalCriminal A criminal is any person who through a decision or act engages in a crime. This can be complicated, as many people break laws unknowingly, however, in our context, it is a person who makes a decision to engage in unlawful acts or to place themselves with others who do this. A criminal always has the ability to decide not to break the law, or if they initially engage in crime to stop doing it, but instead continues. enterprise
“You always had spammers who were just crooks. But then you had a lot of people who were moving business models in from the world of, for example, pharmaceutical advertisements in the back pages of weightlifting magazines. The people working now are out and out criminals, and that actually frees them up to potentially make a lot more money than they did before. Because if they can convince you to buy something, it’s no longer about actually selling you the pharmaceuticals; it’s about taking your credit card information and then using that for identity theftIdentity Theft Identity theft is when someone uses another person's personal identifying information, without their permission, to commit fraud or other crimes. In both the U.K. and the United States it is the theft of personally identifiable information. Identity theft deliberately uses someone else's identity as a method to gain financial advantages or obtain credit and other benefits, and perhaps to cause other person's loss. The person whose identity has been stolen may suffer adverse consequences, especially if they are falsely held responsible for the perpetrator's actions. Personally identifiable information generally includes a person's name, date of birth, social security number, driver's license number, bank account or credit card numbers, PINs, electronic signatures, fingerprints, passwords, or any other information that can be used to access a person's financial resources. purposes.
“And to be clear, spam email is upwards of 85 to 90 percent of all email sent on any given day. It’s just that most of the time we don’t see most of it because our filters are pretty good. But it’s a tidal wave that’s slammingSlamming Slamming is when a phone company illegally switches you from your existing phone service company to their own service without your permission, then bills you for service you did not request. into these walls that we’ve built day after day after day. And we see the little bit that slops over.”
On how you can protect yourself from identity theft online
“I use what’s called a password manager in my browser. This is a system [that] will automatically generate very, very long passwords for any new account you need to set up and it will keep track of all of them for you and log you in. Because the major danger here is not that someone will necessarily steal your computer. The major danger is an automatic system that breaks into Gawker’s password store [for example] and then begins to systematically search the Internet for other things of yours that it can access using that particular arrangement of email and password. Having a good password manager makes that impossible.”
On one more thing you do to guard your important accounts
“For everything of real importance in your life, like your banking information or your personal, central email account, see if they will allow you to use something called two-factor authentication. It’s a system in which you simultaneously have your password and then, you also have to have something else — generally a number — that changes over time. And you have to be able to enter that as well. For example, Gmail has allowed this. When you’re logging into your Gmail account, you type in your [login] name and your password and then it texts a brief set of digits to your phone. You have to enter those as well. This is important because it means you have to be physically in possession of your phone as well as your password to actually log in, which prevents the whole world of people just trying attacks where they guess every password in the dictionary or guess every password in a certain space.”
FULL TRANSCRIPT OF THE INTERVIEW
TITLE: Please Don’t Delete This Interview About Spam
SCOTT SIMON, HOST:
Open up your email. On any given morning, you might get two or three notes from friends, six or seven from people trying to sell you energy pills, offshore real estate or virility enhancers. And the good news, you’ve just won the Lithuanian National Lottery, which you can’t recall entering, or that a man in Kenya needs your help; please sir, only you can help to move $20 million through your bank account. All he needs is your routing number.
That’s spam. Not the meat-like loaf, but unbidden email, many of them not even sent by actual people but robot programs and their volume is often much greater than the amount of real information that people can find in their inboxes. “Spam: A Shadow History of the Internet,” his title of a new book by Finn Brunton who’s now assistant professor of information in the School of Information at the University of Michigan.
He joins us from the studios of WUOM in Ann Arbor. Thanks so much for being with us.
FINN BRUNTON:
Thank you for having me. It’s a pleasure to be here.
SIMON:
First off, how did Pitcairn Island become the center for spam?
(LAUGHTER)
BRUNTON:
It’s a marvelous story. Pitcairn Island, which is the least populated jurisdiction in the world, fascinated me because I was familiar with it only as an extremely minor historical event. It’s where the Bounty mutineers went when they needed to find an extremely remote place to hide.
SIMON:
Right. Mr. Christian. Wound up on Pitcairn Island, yeah.
BRUNTON:
Exactly. And I was shocked to learn that, per capita, Pitcairn Island was the world’s number one source of spam, and I was just wondering, as anyone would who encounters this statistic, how is this possible? And it’s because of the fact that the people on Pitcairn, they don’t realize that they have been made into part of the spam system.
What has happened is that one of the computers on the island has been taken over by a malware program, so this island with 45 or 50 people is broadcasting spam without anyone consciously intending it.
SIMON:
Explain to us how it developed, because I have an idea. Let me try my pet theory on you, the academic expert, that communications technologies expand as they become capable of delivering jokes.
BRUNTON:
Well, I think you are actually very close. The old rule of thumb in media history was that the first private use for any new major communications technology is pornography, but somewhere cheek by jowl with that is humor. One of my favorite details about the history of the telegraph is how quickly an incredible subculture of jokes and gags and pranks and references began to proliferate among the telegraph boys, who are actually managing the equipment.
But indeed, in the case of the internet, from very early on, when it was just these early, often somewhat ragged or haphazard networks between computers mostly in academic settings, the graduate students who were using these machines, as soon as they were not required to use them for some professional purpose, as soon as they had an off hour to kill in the basement, started using them to replay old Monty Python routines, getting back to jokes.
And of course one of the most famous Monty Python routines is the sort of Spam chorus that the Vikings deliver in the made-up Green Midget Cafe in that sketch, where the couple is trying to order something from the menu and everything has Spam in it.
(SOUNDBITE OF MONTY PYTHON SKETCH)
BRUNTON:
So it starts up as a joke, but the term very quickly becomes the universal term for anyone who’s doing that kind of annoying, jokey, time-wasting behavior on these very early computer networks.
SIMON:
Well, help us understand what robotics do.
BRUNTON:
When you get a spam message, sometimes it’ll have an attachment, and the message will say something like, you know, it’ll be a message from a friend and it’ll say, like, oh, hey, could you take a look at this. And then you open it and it doesn’t seem to do anything. It’s just a bunch of weird symbols or it fails to open.
You say, oh, something went wrong. I don’t know, I’ll just delete this and carry on with my day. When you launch that, an exploit within the structure of the software that you’re using has quietly taken over your computer and it is using the computer’s broadband connection to quietly, in the background, without your knowledge, begin sending out spam messages, following the instructions of a central network called a command and control system.
So what that means, if it costs you nothing to send 100 million messages and only some vanishingly small percentage of a percentage ever gets through, we’ll just send 100 million more, you know. And if you can get another 2,000 or 3,000 actually through, you can still make a viable business out of it.
SIMON:
Well, help us understand the scale of that viable business.
BRUNTON:
You always had spammers who are just crooks, but then you had a lot of people who were moving business models in from the world of, for example, pharmaceutical advertisements in the back pages of weightlifting magazines. The people working now are out and out criminals. And that actually frees them up to potentially make a lot more money than they did before, because if they can convince you to buy something, it’s no longer about actually selling you the pharmaceuticals.
It’s about taking your credit card information and then using that for identity theft purposes. And to be clear, spam email is upwards of 85 to 90 percent of all email sent on any given day. It’s just that most of the time we don’t see most of it because our filters are pretty good, but it’s a tidal wave that’s slamming into these walls that we’ve built day after day after day and we see the little bit that slops over.
SIMON:
May I ask, how do you go through life knowing what you do?
BRUNTON:
I use what’s called a password manager in my browser and this is a system, it will automatically generate very, very long passwords for any new account you need to set up and then it will keep track of all of them for you and log you in. Because the major danger here is not that someone will necessarily steal your computer. The major danger is an automatic system that, you know, breaks into Gawker’s password store or what have you, and then begins to systematically search the Internet for other things of yours that it can access using that particular arrangement of email and password. And having a good password manager makes that impossible.
SIMON:
Finn Brunton of the University of Michigan. His new book: “Spam: A Shadow History of the Internet.” Thanks so much for being with us.
BRUNTON:
Thank you for having me. It was a pleasure.
(SOUNDBITE OF MONTY PYTHON “SPAM” SKETCH)
SIMON:
And you can learn about another of his recommended techniques for protecting yourself from spam by going to our website – gee, going to our website to protect yourself from spam. Why not? npr.org.
(SOUNDBITE OF MONTY PYTHON THEME MUSIC)
SIMON:
You’re listening to WEEKEND EDITION from NPR News.
Portions Copyright © NPR
RSN™ Team
a division of SCARSSCARS SCARS - Society of Citizens Against Relationship Scams Inc.
A government registered crime victims' assistance & crime prevention nonprofit organization based in Miami, Florida, U.S.A. SCARS supports the victims of scams worldwide and through its partners in more than 60 countries around the world. Incorporated in 2015, its team has 30 years of continuous experience educating and supporting scam victims.
Visit www.AgainstScams.org to learn more about SCARS.™
Miami Florida U.S.A.
END
– – –
Tell us about your experiences with Romance Scammers in our Scams Discussion Forum on Facebook »
– – –
FAQ: How Do You Properly Report Scammers?
It is essential that law enforcement knows about scamsScams A Scam is a confidence trick - a crime - is an attempt to defraud a person or group after first gaining their trust through deception. Scams or confidence tricks exploit victims using their credulity, naïveté, compassion, vanity, irresponsibility, or greed and exploiting that. Researchers have defined confidence tricks as "a distinctive species of fraudulent conduct ... intending to further voluntary exchanges that are not mutually beneficial", as they "benefit con operators ('con men' - criminals) at the expense of their victims (the 'marks')". A scam is a crime even if no money was lost. & scammers, even though there is nothing (in most cases) that they can do.
Always report scams involving money lost or where you received money to:
- Local PoliceLocal Police The Local Police is your first responder in most countries. In most English-speaking countries and in Europe report to them first. In other countries look for your national cybercrime police units to report scams to. In the U.S., Canada, & Australia, you must report to the local police first. – ask them to take an “informational” police report – say you need it for your insurance
- Your National Police or FBIFBI FBI - Federal Bureau of Investigation The Federal Bureau of Investigation (FBI) is the domestic intelligence and security service of the United States and its principal federal law enforcement agency. Operating under the jurisdiction of the United States Department of Justice, the FBI is also a member of the U.S. Intelligence Community and reports to both the Attorney General and the Director of National Intelligence. A leading U.S. counter-terrorism, counterintelligence, and criminal investigative organization, the FBI has jurisdiction over violations of more than 200 categories of federal crimes, including financial fraud. (www.IC3.gov)
- The Scars Worldwide Reporting Network HERE or on www.Anyscam.com
This helps your government understand the problem, and allows law enforcement to add scammers on watch lists worldwide.
– – –
Visit our NEW Main SCARS™ News & Information Facebook page for much more information about scams and online crime: www.facebook.com/SCARS.News.And.Information
To learn more about SCARS visit www.AgainstScams.org
Please be sure to report all scammers HERE or on www.Anyscam.com
All original content is Copyright © 1991 – 2018 SCARS All Rights Reserved Worldwide & Webwide – RSN/Romance Scams Now & SCARS/Society of Citizens Against Romance Scams are all trademarks of Society of Citizens Against Romance Scams Inc.
Leave A Comment