Attacks/Breaches
10/31/2007
02:59 AM
Connect Directly
RSS
E-Mail
50%
50%

MX Logic Filters Attachment-Based Spam

MX Logic adds a new layer to its security filtering process

ENGLEWOOD, Colo. -- MX Logic, Inc., a leading managed security service provider, today announced the deployment of an anti-spam filter that specifically targets any attachment-based spam variations. The new Deep Content AnalysisSM filter is the latest advancement to the MX Logic Stacked Classification Framework® spam detection system, which is powered by patented technology and combines the most effective spam-fighting filters and techniques in the industry.

PDF (Adobe Portable Document Format) spam is the first variation of attachment-based spam addressed by the new filter, which is now in place to protect all businesses with the MX Logic® Email Defense Service. In PDF spam, spam content is embedded within attached .pdf documents instead of within the body copy of the message. Unlike any other solution on the market, the Deep Content Analysis filter allows all email attachments to be treated holistically and therefore enables MX Logic to analyze these messages in their entirety to determine if the email and/or the attachment contains spam or malware before they reach the customer’s network.

“At the height of the PDF spam outbreak, we were seeing PDF spam comprising between 10 to 15 percent of the overall spam volume with spikes up to 30 percent,” said Sam Masiello, director of threat management at MX Logic. “The shift caused by the increase in PDF spam was just the first wave of what we expect to be the next evolution of email-borne threats. In fact, as image spam volume continues to decline we believe attachment-based spam will take its place and greatly increase. So, we have created the Deep Content Analysis filter, further advancing our Stacked Classification Framework spam detection system, to respond to this threat.”

MX Logic Inc.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-2963
Published: 2014-07-10
Multiple cross-site scripting (XSS) vulnerabilities in group/control_panel/manage in Liferay Portal 6.1.2 CE GA3, 6.1.X EE, and 6.2.X EE allow remote attackers to inject arbitrary web script or HTML via the (1) _2_firstName, (2) _2_lastName, or (3) _2_middleName parameter.

CVE-2014-3310
Published: 2014-07-10
The File Transfer feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center does not verify that a requested file was an offered file, which allows remote attackers to read arbitrary files via a modified request, aka Bug IDs CSCup62442 and CSCup58463.

CVE-2014-3311
Published: 2014-07-10
Heap-based buffer overflow in the file-sharing feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center allows remote attackers to execute arbitrary code via crafted data, aka Bug IDs CSCup62463 and CSCup58467.

CVE-2014-3315
Published: 2014-07-10
Cross-site scripting (XSS) vulnerability in viewfilecontents.do in the Dialed Number Analyzer (DNA) component in Cisco Unified Communications Manager allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCup76308.

CVE-2014-3316
Published: 2014-07-10
The Multiple Analyzer in the Dialed Number Analyzer (DNA) component in Cisco Unified Communications Manager allows remote authenticated users to bypass intended upload restrictions via a crafted parameter, aka Bug ID CSCup76297.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.