Vulnerabilities / Threats
4/16/2009
03:08 PM
Connect Directly
Google+
LinkedIn
Twitter
RSS
E-Mail
50%
50%

Spam Is Killing The Planet

McAfee says that the energy required to send, route, and filter spam e-mail each year could power 2.4 million homes and release as much greenhouse gas as 3.1 million cars.

Forget the fact that spam costs you time you'll never get back and money that probably wasn't easy to earn. Ignore the possibility that malicious links or files contained in spam might lead to the theft of your identity or bank account.

Focus for a moment on spam as an environmental scourge that damages the planet and contributes to greenhouse gas emissions.

You might wonder whether you should be thinking about Hormel's Spam, the canned meat product. Industrial meat production, after all, has been linked to environmental damage and the increased release of greenhouse gases.

But no. We're talking about spam e-mail. According to a study released by McAfee, "Carbon Footprint of Spam," the world expends 33 billion kilowatt-hours of electricity, or 33 terawatt-hours, to send, route, and filter spam messages.

That's the equivalent of the electricity required to power 2.4 million homes, the study estimates. And that much energy use emits the same amount of greenhouse gases as 3.1 million passenger cars using 2 billion gallons of gasoline.

Jeff Green, senior VP of product development and McAfee Avert Labs, argues that spam has a major financial impact and that spam filtering saves both the environment and money.

The study finds that spam filtering saves 135 TWh of electricity per year, an amount that equates to the removal of 13 million cars from the road. And it estimates that if every e-mail in-box had state-of-the-art spam filtering, spam could be reduced by 75%, or 25 TWh per year, a reduction comparable to the removal of 2.3 million cars off the road.

For those who haven't yet guessed as much, McAfee offers an anti-spam service.

What McAfee's study neglects to estimate is the revenue that spam and associated malware generates for computer security companies and computer equipment makers. We're talking about many billions of dollars annually. How many computer security jobs depend on spam's environmental damage?

What's more, the argument that spam should be fought to save the planet can be applied to other computing activities. Consider the environmental impact of more than 11 million World of Warcraft subscribers, or the broader population of gamers and their consoles. How much energy is frittered away as a result of Facebook, MySpace, and other social networks?

Reversing the fragile logic of environmental impact, one could argue that spam is better for the environment than junk mail, which is transported by actual polluting vehicles and, by one estimate, leads to the destruction of 100 million trees annually.

Send spam, save a tree, and help power the security economy. Just remember to do so legally, as allowed by the Can-Spam Act of 2003.

Better yet, turn off your computer and deliver your message in person.


E-mail is the backbone of most organizations -- and a huge resource hog. Learn how to make it greener in a special InformationWeek report (registration required).

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading December Tech Digest
Experts weigh in on the pros and cons of end-user security training.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-6477
Published: 2014-11-23
Unspecified vulnerability in the JPublisher component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4290, CVE-2014-4291, CVE-2014-4292, CVE-2014-4...

CVE-2014-4807
Published: 2014-11-22
Sterling Order Management in IBM Sterling Selling and Fulfillment Suite 9.3.0 before FP8 allows remote authenticated users to cause a denial of service (CPU consumption) via a '\0' character.

CVE-2014-6183
Published: 2014-11-22
IBM Security Network Protection 5.1 before 5.1.0.0 FP13, 5.1.1 before 5.1.1.0 FP8, 5.1.2 before 5.1.2.0 FP9, 5.1.2.1 before FP5, 5.2 before 5.2.0.0 FP5, and 5.3 before 5.3.0.0 FP1 on XGS devices allows remote authenticated users to execute arbitrary commands via unspecified vectors.

CVE-2014-8626
Published: 2014-11-22
Stack-based buffer overflow in the date_from_ISO8601 function in ext/xmlrpc/libxmlrpc/xmlrpc.c in PHP before 5.2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code by including a timezone field in a date, leading to improper XML-RPC encoding...

CVE-2014-8710
Published: 2014-11-22
The decompress_sigcomp_message function in epan/sigcomp-udvm.c in the SigComp UDVM dissector in Wireshark 1.10.x before 1.10.11 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Now that the holiday season is about to begin both online and in stores, will this be yet another season of nonstop gifting to cybercriminals?