Select your localized edition:

Close ×

More Ways to Connect

Discover one of our 28 local entrepreneurial communities »

Be the first to know as we launch in new countries and markets around the globe.

Interested in bringing MIT Technology Review to your local market?

MIT Technology ReviewMIT Technology Review - logo

 

Unsupported browser: Your browser does not meet modern web standards. See how it scores »

{ action.text }

While researching today’s story about crafty phishing techniques, I came across some statistics that reveal the lifespan of various types of nefarious Internet schemes. The chart below, put together by Milcord, a company that collects real-time data about botnets, shows that spammers survive for a couple of months, while phishers typically make it only about five to ten days. Malware schemes are in between.

The chart shows the respective lifespans of botnets engaged in phishing, spam, and malware distribution. The data is for botnets that use a trick called flux to extend their lifespans. Credit: Milcord

What’s the reason for this time difference?

Alper Caglayan, Milcord’s president, thinks it’s due to the nature of the victim. “Phishing targets well-known brands, like Citibank, Bank of America, eBay, or Paypal,” he says. “Obviously, these folks are willing to spend a lot of money defending their brands.”

Though ordinary people are the ones who ultimately get burned, phishers can affect the reputations of companies with deep pockets. Caglayan says that some security companies offer service-level agreements that promise to get a phishing site hosted in the U.S. taken down in under an hour.

Spam, on the other hand, has no such highly-motivated opponents. While it’s a nuisance to everyone, no particular company suffers publicly for it, and therefore, the money to halt it simply isn’t there.

Most individuals may want someone to do something about spam, but they end up relying on anti-virus software or intervention from law-enforcement agencies.The motivation to go after and shut down the botnets just isn’t the same.

8 comments. Share your thoughts »

Tagged: Web, spam, botnets, phishing, Internet Security, flux

Reprints and Permissions | Send feedback to the editor

From the Archives

Close

Introducing MIT Technology Review Insider.

Already a Magazine subscriber?

You're automatically an Insider. It's easy to activate or upgrade your account.

Activate Your Account

Become an Insider

It's the new way to subscribe. Get even more of the tech news, research, and discoveries you crave.

Sign Up

Learn More

Find out why MIT Technology Review Insider is for you and explore your options.

Show Me