Deliverability: Trust and Reputation: Data from the Receiver’S Side

Total Page:16

File Type:pdf, Size:1020Kb

Deliverability: Trust and Reputation: Data from the Receiver’S Side Deliverability: Trust and reputation: data from the Receiver’s side Marco Franceschetti Head of Deliverability In a nutshell • Founded in 1998, Contactlab offers the end-to-end engagement marketing platform that enables brands to gain insights into the context of each customer and deepen the retail experience by delivering highly personalized digital direct messages across channels based on events, preferences and product lifecycle • Thanks to its technology and digital experts, Contactlab is the strategic partner for commerce- focused companies and fashion & luxury brands to achieve a deeper understanding of customers, to deliver a uniquely relevant messages at every touchpoint of the customer journey and to measure performances with real-time dashboards that display all the relevant data 2 © Copyright 2016 Contactlab © Copyright 2016 Contactlab This document may not be modified, organizedThis document or reutilized may in notany be way modified, without organizedthe express or written reutilized permission in any way of thewithout rightful the own expresser. written permission of the rightful owner. Facts & Figures • More than 15 years of experience and leadership in engagement marketing • 1 HQ in Milano, 4 OFFICES in Europe • 80 MILLIONS of emails sent every day • 6.3 TERABYTE of data handled daily by our systems • + 1000 clients in different industries across the world • In 2014, the entry of P101, the venture capital operator, turns Contactlab into a company limited by shares • Exane BNP Paribas has partnered since 2013 with Contactlab for their digital strategy reports for the fashion-luxury industry • Contactlab has been included for the second time in the Gartner Market Guide for Email Marketing (2015) 3 © Copyright 2016 Contactlab © Copyright 2016 Contactlab This document may not be modified, organizedThis document or reutilized may in notany be way modified, without organizedthe express or written reutilized permission in any way of thewithout rightful the own expresser. written permission of the rightful owner. Our service lines Engagement Marketing Platform: • Data capture & data consolidation • Planning • Multichannel sending • Analytics and Dashboards • Data Analysis Prediction & Recommendations • Customer Survey • Benchmarking • Digital assessment • Digital strategy • Application Development and Integration Services • Deliverability • Campaign Management (creative, production, localization) • Customer survey 4 © Copyright 2016 Contactlab © Copyright 2016 Contactlab This document may not be modified, organizedThis document or reutilized may in notany be way modified, without organizedthe express or written reutilized permission in any way of thewithout rightful the own expresser. written permission of the rightful owner. Contents Trust and Engagement: • Is Phishing targeting the Retail sector? • Phishing and fraud endangering your Brand? Email Reputation: • Why is it important? • How do you know if your Email reaches the inbox? • Inbox data on the Receiver’s side 5 © Copyright 2016 Contactlab This document may not be modified, organized or reutilized in any way without the express written permission of the rightful owner. Is Phishing targeting the Retail sector? “Phishing attacks are on the rise. In the first quarter of 2016, the Anti-Phishing Working Group (APWG) observed more phishing attacks than at any other time in history.” Return Path “Phishing is a criminal mechanism employing both social engineering and technical subterfuge to steal consumers’ personal identity data and financial account credentials. Social engineering schemes use spoofed e-mails purporting to be from legitimate businesses and agencies, designed to lead consumers to counterfeit websites that trick recipients into divulging financial data such as usernames and passwords […]”. Anti-Phishing Working Group “Fighting Phishing: Protect Your Brand, Combat Email Spoofing”. Gartner 6 © Copyright 2016 Contactlab This document may not be modified, organized or reutilized in any way without the express written permission of the rightful owner. Trust and Engagement PHISHING Email as a channel is under attack. More than half of internet users get at least one phishing email per day. (Phishing.org) Customers are 42 percent less likely to do business with you if you are being targeted by a phishing attack, regardless of whether or not they are actually getting tricked into giving up their information. (Cloudmark) The Anti-Phishing Working Group (APWG) says it observed a Source: APWG Q1 2016 Phishing Activity Trends Report record-breaking 250 percent surge in phishing attacks between October 2015 and March 2016. According to its latest report, the number of unique phishing websites detected in Q1 totaled 289,371, with more than 123,000 of those sites being discovered in March 2016 alone. (Tripwire) 7 © Copyright 2016 Contactlab This document may not be modified, organized or reutilized in any way without the express written permission of the rightful owner. Is Phishing targeting the Retail sector? ““The Retail/Service sector remained the most-targeted industry sector, with 42.71 percent of attacks […]” Source: APWG Q1 2016 Phishing Activity Trends Report 8 © Copyright 2016 Contactlab This document may not be modified, organized or reutilized in any way without the express written permission of the rightful owner. Phishing and fraud endangering your Brand? Email Domain Authentication DomainKeys Identified Mail (DKIM) DKIM checks the message content, deploying digital signatures, which are distributed via the DNS and associates a message to a domain name. http://www.dkim.org/ Sender Policy Framework (SPF) SPF checks whether the sender's IP address is authorized by one of the identified http://www.openspf.org/ Domain-based Message Authentication, Reporting & Conformance (DMARC) Allows to specify a policy for authenticated messages. The "R" of DMARC, reporting, consists in supplying feedback to the author domain https://dmarc.org/ 9 © Copyright 2016 Contactlab This document may not be modified, organized or reutilized in any way without the express written permission of the rightful owner. Phishing and fraud endangering your Brand? DMARC requires alignment between FROM domain (as seen from the user receiver) and either SPF or DKIM. This is the bond of a Brand being ricognisable and the client of the brand. It stands for transparency and supports the building of TRUST. "v=DMARC1;p=reject;pct=100;rua=mailto:[email protected]" If a Spammer abuses your sending domain and you have a valid DMARC record, you will be able to instruct the Receiver to: • Monitor • Quarantine • Reject 10 © Copyright 2016 Contactlab This document may not be modified, organized or reutilized in any way without the express written permission of the rightful owner. Phishing and fraud endangering your Brand? DMARC and the Email Authentication Process Source: https://dmarc.org/ 11 © Copyright 2016 Contactlab This document may not be modified, organized or reutilized in any way without the express written permission of the rightful owner. Phishing and fraud endangering your Brand? Source: dmarcian’s Authentiscope https://dmarcian.com/ 12 © Copyright 2016 Contactlab This document may not be modified, organized or reutilized in any way without the express written permission of the rightful owner. Email Reputation: Why is Reputation important? mail.ru on Reputation: "Reputation is feedback from users and represents the average percentage of complaints about your distributions (clicks on the "Spam" button in Mail's web interface). Reputation is used by our filters to decide whether or not a message is spam. If you have a poor reputation, your mail distributions may entirely or partially blocked, or they may end up in users' Spam folder […]” (http://help.mail.ru/enmail-help/rules/general) 13 © Copyright 2016 Contactlab This document may not be modified, organized or reutilized in any way without the express written permission of the rightful owner. Email Reputation: Why is Reputation important? 1. «we won’t shut you down for spam complaints» 2. «I don’t care where you got your email list from»* 3. «We do not consider unsolicited bulk email to be SPAM» Source: Joshua Greenwood - Bulk Email software 2011 – registered as Spammer from Spamhaus and Spamcop in 2010 (not active in the industry anymore) 14 © Copyright 2016 Contactlab This document may not be modified, organized or reutilized in any way without the express written permission of the rightful owner. Email Reputation: Why is Reputation important? REAL SPAM– harvesting, no opt-in, buying lists of personal addresses, botnets … Anonymous Spam means: Domain registered by anonymous proxy. No Imprint on Website. No further contact information on the email except the website. Order Form on Website, Payment anonymously via Paypal. «The feeling of» SPAM – legitimate bulk email that looks like SPAM: absent or not broken unsubscription process I never gave my consent to this sender Not relevant, not interesting content. Impression of too many emails. Source: Spamhaus What do real SPAM and «look alike» SPAM have in common? Both need to be processed, and therefore represent a cost for the Receiver. Jeopardize the mailbox’s user experience Undermine the ISP’s advertising potential. 15 © Copyright 2016 Contactlab This document may not be modified, organized or reutilized in any way without the express written permission of the rightful owner. How do you know if your Email reaches the inbox? That’s why bulk mailing is always subject to strict
Recommended publications
  • Gbruen Knujon Mitspamconf2
    The Future of Anti-Spam: A Blueprint for New Internet Abuse Tools Garth Bruen, CEO Knujon.com LLC [email protected] Process and Document Map Abstract I. Introduction II. Failures and Limitations III. KnujOn Principles IV. Data Collection = Consumer Enfranchisement V. Sort, Categorize, Analyze VI. Redefining the Scope VII. Addressing the Support Structure VIII. Fixing Policy and Technology IX. Use the Law When Called For X. Brand Protection XI. The Daily Tally XII. Non-URL Successes XIII. Conclusion: What is Needed Next (Map of the Process and the Document) Abstract: It is this author’s contention that the efforts, technology, funding, and even critical thought in anti-spam development have been incorrectly focused on the email itself. In essence, the Internet security community has been “looking through the wrong end of the telescope.” Resources poured into larger and larger filtering engines and algorithms have failed to reduce the volume and flow of unsolicited email. In fact, spam volumes have generally increased since filtering was declared the de facto solution. The problem is not really about flaws in SMTP (simple mail transfer protocol), or email clients, or even email security in general. Nor is the problem solely attributed to botnets and malware. Garth Bruen and Dr. Robert Bruen have developed a solution that is based on mass abuse data collection, data analysis, policy enforcement, public reporting, and infrastructure enhancement. The ultimate key to solving the spam problem is about blocking transactions, stopping the flow of money to criminals who hire spammers to market their illicit products. Doing this through the existing, but enhanced, policy structure addresses the issue without exaggerated costs or reinventing the Internet.
    [Show full text]
  • Understanding the Business Ofonline Pharmaceutical Affiliate Programs
    PharmaLeaks: Understanding the Business of Online Pharmaceutical Affiliate Programs Damon McCoy Andreas Pitsillidis∗ Grant Jordan∗ Nicholas Weaver∗† Christian Kreibich∗† Brian Krebs‡ Geoffrey M. Voelker∗ Stefan Savage∗ Kirill Levchenko∗ Department of Computer Science ∗Department of Computer Science and Engineering George Mason University University of California, San Diego †International Computer Science Institute ‡KrebsOnSecurity.com Berkeley, CA Abstract driven by competition between criminal organizations), a broad corpus of ground truth data has become avail- Online sales of counterfeit or unauthorized products able. In particular, in this paper we analyze the content drive a robust underground advertising industry that in- and implications of low-level databases and transactional cludes email spam, “black hat” search engine optimiza- metadata describing years of activity at the GlavMed, tion, forum abuse and so on. Virtually everyone has en- SpamIt and RX-Promotion pharmaceutical affiliate pro- countered enticements to purchase drugs, prescription- grams. By examining hundreds of thousands of orders, free, from an online “Canadian Pharmacy.” However, comprising a settled revenue totaling over US$170M, even though such sites are clearly economically moti- we are able to provide comprehensive documentation on vated, the shape of the underlying business enterprise three key aspects of underground advertising activity: is not well understood precisely because it is “under- Customers. We provide detailed analysis on the con- ground.” In this paper we exploit a rare opportunity to sumer demand for Internet-advertised counterfeit phar- view three such organizations—the GlavMed, SpamIt maceuticals, covering customer demographics, product and RX-Promotion pharmaceutical affiliate programs— selection (including an examination of drug abuse as a from the inside.
    [Show full text]
  • Honeypots and Spam Ahmed Obied Department of Computer Science University of Calgary Calgary, Alberta, Canada, T2N 1N4 [email protected]
    Honeypots and Spam Ahmed Obied Department of Computer Science University of Calgary Calgary, Alberta, Canada, T2N 1N4 [email protected] Abstract computer systems shortly after vulnerabilities become known [18]. Honeypots are closely monitored computing resources that can provide early warning about new vulnerabilities To stay one step ahead and get early warnings of and exploitation techniques, distract attackers from valu- new vulnerabilities and exploits, one can use honeypots. able computer systems, or allow in-depth examination Honeypots are a powerful, new technology with incred- of attackers during and after exploitation of a honeypot. ible potential [23]. Honeypots can do everything from Extensive research into honeypot technologies has been detecting new attacks never seen in the wild before, to done in the past several years to provide better counter- tracking botnets, automated credit card fraud, and spam. measures against malicious attacks and track attackers. This paper describes honeypots in-depth and discusses In this paper, we present a survey on honeypots. how honeypots can be used to fight spam and spammers We discuss their history, types, purpose, and value. We effectively. also present an in-depth discussion of how honeypots can be used to fight spam and spammers. 1 Introduction The use of computer systems increased tremendously 2 Definition of Honeypots in the last few years and millions of users joined this Many definitions for a honeypot exist. The most accu- technological revolution due to the creation of the rate definition is the one used by Lance Spitzner [23]. Internet that made the world look so small and at our Spitzner defines a honeypot as an information system disposal.
    [Show full text]
  • Ethical Hacking and Countermeasures Version 6
    Ethical Hacking and Countermeasures Version 6 Module XL Spamming News Source: http://www.nzherald.co.nz/ Copyright © by EC-Council EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Module Objective This module will familiarize you with: Spamming Techniques used by Spammers How Spamming is performed Ways of Spamming Types of Spam attacks Bulk Emailing Tools Anti-Spam Techniques Anti- Spamming Tools Copyright © by EC-Council EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Module Flow Spamming Types of Spam Attacks Techniques used by Bulk Emailing Tools Spammers How Spamming is Anti- Spam Techniques Performed Ways of Spamming Anti- Spamming Tools Copyright © by EC-Council EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Introduction Spamming is populating the user’s inbox with unsolicited or junk emails Spam email contains malicious computer programs such as viruses and Trojans which change the computer settings or track the system Sppgamming is also used for product advertisements Copyright © by EC-Council EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Techniques Used by Spammers Spoofing the domain: • Message appears to be from user’s own domain Poisoning or spoofing filters: • Addition of inv is ible tex t or number ing in message Social Engineering: • Used to manipulate people to perform actions or divulge confidential information Directory harvesting: • By sending messages to possible addresses and then building a list of valid email addresses through non-delivery
    [Show full text]
  • ED441402.Pdf
    DOCUMENT RESUME ED 441 402 IR 020 434 TITLE Commission on Child Online Protection (COPA) Report to Congress. Appendices. PUB DATE 2000-10-20 NOTE 1085p.; For the Commission on Child Online Protection (COPA) Report to Congress, see IR 020 433. AVAILABLE FROM For full text: http://www.copacommission.org. PUB TYPE Reports Descriptive (141) EDRS PRICE MF08/PC44 Plus Postage. DESCRIPTORS Access to Information; *Child Safety; *Children; Federal Legislation; Federal Regulation; Freedom of Speech; *Information Policy; Information Technology; *Internet; Policy Formation; Pornography; Privacy IDENTIFIERS Acceptable Use Policy; Commission on Online Child Protection; Filters; First Amendment ABSTRACT The appendices for the Commission on Child Online Protection (COPA) Report to Congress, October 20, 2000, include the following: Commission overview, which includes scope and timeline, original statute, amended statute, technologies and methods, and biographies of the commissioners; Commission finances; Commission meetings for the year 2000; materials submitted to the Commission, including materials for hearings as well as research papers, reports, and correspondence; compilation of matrices on filtering, labeling, and rating technologies; Commission responses to questionnaire; and catalog of drawer files, which includes a detailed index of all materials submitted to the Commission in nonelectronic format such as books, software programs, handouts, and VHS tape recordings of hearings and transcripts. (AA) Reproductions supplied by EDRS are the best that can be made from the original document. Commission on Child Online Protection (COPA) Report to Congress October 20, 2000 Appendices BEST COPYAVAILABLE U.S. DEPARTMENT OF EDUCATION CSA 011ice of Educational Research fins Improvement PERMISSION TO REPRODUCE AND EDUCATIONAL RESOURCES INFORMATION DISSEMINATE THIS MATERIAL HAS CENTER (ERIC) BEEN GRAN TED BY 0 This document has been reproduced as received from the person or organization originating it.
    [Show full text]
  • Diplomarbeit Penetrating Bayesian Spam Filters Using Redundancy in Natural Language
    Die approbierte Originalversion dieser Diplom-/Masterarbeit ist an der Hauptbibliothek der Technischen Universität Wien aufgestellt (http://www.ub.tuwien.ac.at). The approved original version of this diploma or master thesis is available at the main library of the Vienna University of Technology (http://www.ub.tuwien.ac.at/englweb/). Diplomarbeit Penetrating Bayesian Spam Filters Using Redundancy in Natural Language Ausgefuhrt¨ am Institut fur¨ Rechnergestutzte¨ Automation Arbeitsgruppe Automatisierungssysteme der Technischen Universitat¨ Wien unter der Anleitung von Ao.Univ.Prof. Dipl.-Ing. Dr.techn. Wolfgang Kastner und Privatdozent Dipl.-Ing. Dr.techn. Christopher Krugel¨ und Privatdozent Dipl.-Ing. Dr.techn. Engin Kirda als verantwortlich mitwirkenden Universitatsassistenten¨ durch Gunther¨ Bayler Am Wiesenweg 17 2403 Scharndorf 16. Oktober 2007 ii Abstract Today’s attacks against Bayesian spam filters attempt to keep the content of spam emails visible to humans, but obscured to filters, or they attempt to fool the filters with additional good words appended to the spam. Another conceivable approach is to substitute suspicious words in spam emails with innocent words to make them appear as legitimate emails (i.e., ham emails). A precondition for the success of such an attack is that Bayesian spam filters of different users assign similar spam probabilities to similar tokens. In this thesis, it is examined whether this precondition is met; afterwards, the effectivity of a substitution attack is measured by creating a test set of spam messages
    [Show full text]
  • Foundations of Computer Security.Pdf
    Salomon-FM.qxd 10/19/05 9:18 AM Page i Foundations of Computer Security Salomon-FM.qxd 10/19/05 9:18 AM Page iii David Salomon Foundations of Computer Security With 45 Figures Salomon-FM.qxd 10/19/05 9:18 AM Page iv Professor David Salomon (emeritus) Computer Science Department California State University Northridge, CA 91330-8281 USA email: [email protected] British Library Cataloguing in Publication Data A catalogue record for this book is available from the British Library Library of Congress Control Number: 2005932091 ISBN-10: 1-84628-193-8 e-ISBN 1-84628-193-8 ISBN-13: 978-1-84628-193-8 Printed on acid-free paper © Springer-Verlag London Limited 2006 Apart from any fair dealing for the purposes of research or private study, or criticism or review, as permitted under the Copyright, Designs and Patents Act 1988, this publication may only be reproduced, stored or transmitted, in any form or by any means, with the prior permission in writing of the publishers, or in the case of reprographic repro- duction in accordance with the terms of licences issued by the Copyright Licensing Agency. Enquiries concerning reproduction outside those terms should be sent to the publishers. The use of registered names, trademarks, etc. in this publication does not imply, even in the absence of a specific state- ment, that such names are exempt from the relevant laws and regulations and therefore free for general use. The publisher makes no representation, express or implied, with regard to the accuracy of the information contained in this book and cannot accept any legal responsibility or liability for any errors or omissions that may be made.
    [Show full text]
  • Final Report Project “Spamabwehr II”
    Final Report Project “Spamabwehr II” W. Gansterer, M. Ilger, A. Janecek, P. Lechner, J. Strauß Technical Report FA384018-5 Institute of Distributed and Multimedia Systems Faculty of Computer Science University of Vienna, Austria April 2006 This report summarizes the results of the project FA 384018 “Spamabwehr II” of the Institute of Distributed and Multimedia Systems at the University of Vienna, funded by IPA, mobilkom austria and UPC Telekabel. Copyright © 2006 by University of Vienna. All rights reserved. No part of this publication may be reproduced or distributed in any form or by any means without the prior permission of the authors. The Department of Distributed and Multimedia Systems at the University of Vienna does not guarantee the accuracy, adequacy or completeness of any information and is not responsible for any errors or omissions or the result obtained from the use of such information. Seite 2 About the Authors Project “Spamabwehr II” was launched in May 2005 at the Institute of Distributed and Multimedia Systems at the Faculty of Computer Science at the University of Vienna. The team: Dr. Wilfried Gansterer (project leader), Michael Ilger, Mag. Andreas Janecek, Mag. Peter Lechner and Jürgen Strauß. Contact for Project “Spamabwehr II”: phone: +43-1-4277-39650 e-mail: Each team member can be contacted at [email protected] The Institution: The Faculty of Computer Science (Fakultät für Informatik) is lead by Dean Prof. Dr. Günter Haring. The Institute of Distributed and Multimedia Systems, headed by Prof. DDr. Gerald Quirchmayr, is one of the institutes within this faculty. Institute of Distributed and Multimedia Systems University of Vienna Lenaugasse 2/8, A-1080 Vienna (Austria) Seite 3 Table of Content Executive Summary .........................................................................................................................5 1.
    [Show full text]
  • Teaching Spam and Spyware at the University of C@1G4ry
    Teaching Spam and Spyware at the University of C@1g4ry John Aycock Department of Computer Science University of Calgary 2500 University Drive N.W. Calgary, Alberta, Canada T2N 1N4 [email protected] ABSTRACT from an educated populus. Given that spam and spyware are fre- The University of Calgary is attacking the problems of spam and quently touted as major problems for our computer-dependent so- spyware from the angle of education. “Spam and Spyware” is ciety, universities should be lining up to teach students about spam a computer science course offered at both the undergraduate and and spyware. graduate level, that objectively examines the legal, ethical, and Another issue is our choice of teaching methodology. Spam and technical aspects of spam and spyware and their countermeasures. Spyware is a hands-on course, where students write spyware and We believe that this is the only course of its kind in the world. Fur- spamming software, along with their countermeasures, in a secure thermore, students are given hands-on experience in a secure labo- laboratory. That students learn about both offensive and defen- ratory, developing software for spamming, spyware, and defenses sive techniques is in keeping with the balanced, objective view the against them. This paper documents our course and its rationale. course uses in its coverage of the area. The hands-on, learning- by-doing aspect is a technique used successfully for many other non-security courses; as students should be given the best educa- 1. INTRODUCTION tion possible in computer security, it would be nonsensical to avoid The University of Calgary’s Department of Computer Science effective teaching methods so long as the material can be taught offered a new course in the fall of 2005 which attracted some no- safely.
    [Show full text]
  • February 2005 VOLUME 30 NUMBER 1
    February 2005 VOLUME 30 NUMBER 1 THE USENIX MAGAZINE OPINION MOTD ROB KOLSTAD Who Needs an Enemy When You Can Divide and Conquer Yourself? MARCUS J. RANUM SAGE-News Article on SCO Defacement ROB KOLSTAD TECHNOLOGY Voice over IP with Asterisk HEISON CHAK SECURITY Why Teenagers Hack: A Personal Memoir STEVEN ALEXANDER Musings RIK FARROW Firewalls and Fairy Tales TI NA DARMOHRAY The Importance of Securing Workstations STEVEN ALEXANDER Tempting Fate ABE SINGER S Y S ADMIN ISPadmin ROBERT HASKINS Getting What You Want:The Fine Art of Proposal Writing THOMAS SLUYTER The Profession of System Administration MARK BURGESS PROGRAMMING Practical Perl: Error Handling Patterns in Perl ADAM TUROFF Creating Stand-Alone Executables with Tcl/Tk CLIF FLYNT Working with C# Serialization GLEN MCCLUSKEY CONFERENCES 18th Large Installation System Administration Conference BOOK REVIEWS The Bookworm (LISA ’04) PETER H. SALUS EuroBSDCon 2004 Book Reviews RIK FARROW AND CHUCK HARDIN USENIX NOTES 20 Years Ago . and More PETER H. SALUS Summary of USENIX Board of Directors Actions The Advanced Computing Systems Association Upcoming Events 2005 USENIX ANNUAL TECHNICAL STEPS TO REDUCING UNWANTED TRAFFIC ON CONFERENCE THE INTERNET WORKSHOP (SRUTI ’05) APRIL 10–15, 2005, ANAHEIM, CA, USA JULY 7–8, 2005, CAMBRIDGE, MA, USA http://www.usenix.org/usenix05 http://www.usenix.org/sruti05 Paper submissions due: March 30, 2005 2ND SYMPOSIUM ON NETWORKED SYSTEMS LINUX KERNEL SUMMIT '05 DESIGN AND IMPLEMENTATION (NSDI ’05) JULY 17–19, 2005, OTTAWA, ONTARIO, CANADA Sponsored by
    [Show full text]