Heuristic analysis, an e-mail scanning technique that sifts through e-mail messages for the characteristics and behaviors that are unique to spam messages, may help. Dandelions might look pretty, but they can kill an otherwise healthy lawn. The same is true of the spam that plants itself in your inbox. But heuristic analysis, an e-mail scanning technique that sifts through e-mail messages for the characteristics and behaviors that are unique to spam messages, may help. Doug McLean, vice president of marketing at Postini, a spam filtering service, describes the spam characteristics as the “fingerprints” of spammers. They include information buried in the e-mail message header that is invisible to most e-mail recipientsinformation such as the path the e-mail took to reach its destination and the content of the message. Picking out spamlike qualities in e-mail messages is not hard to do, according to Dave Strickler, CEO of antispam service provider MailWise. “The biggest thing that people don’t realize is the amount of mistakes spammers make in the header of an e-mail message,” he says. Multiple sender addresses, grossly inaccurate time stamps and nonexistent time zone settings are just a few of the aberrations that are common in spam messages, Strickler says.Spam signatures work the same way virus signatures do, according to McLean. Researchers look at individual e-mail messages and determine whether they are spam. Once a legitimate spam message is identified, the antispam vendor uses an algorithm to calculate a unique string of bits, or “signature,” for the spam message. The antispam software uses that signature to scan incoming messages and identify spam.Blacklists and keywords, the other common methods of screening e-mail for spam, only give administrators the ability to block messages coming from specific addresses or domains, or containing certain words. As a result, they are less deft at picking out spam messages from legitimate e-mail traffic. So, how can a CSO know which product and approach is best? CSOs who are looking into antispam products and services would be well served by conferring with companies that are already using the technology. For managed service providers, McLean says, the account renewal rate will tell CSOs a lot about how happy the company’s current customers are. Related content news UK government plans 2,500 new tech recruits by 2025 with focus on cybersecurity New apprenticeships and talent programmes will support recruitment for in-demand roles such as cybersecurity technologists and software developers By Michael Hill Sep 29, 2023 4 mins Education Industry Education Industry Education Industry news UK data regulator orders end to spreadsheet FOI requests after serious data breaches The Information Commissioner’s Office says alternative approaches should be used to publish freedom of information data to mitigate risks to personal information By Michael Hill Sep 29, 2023 3 mins Government Cybercrime Data and Information Security feature Cybersecurity startups to watch for in 2023 These startups are jumping in where most established security vendors have yet to go. By CSO Staff Sep 29, 2023 19 mins CSO and CISO Security news analysis Companies are already feeling the pressure from upcoming US SEC cyber rules New Securities and Exchange Commission cyber incident reporting rules don't kick in until December, but experts say they highlight the need for greater collaboration between CISOs and the C-suite By Cynthia Brumfield Sep 28, 2023 6 mins Regulation Data Breach Financial Services Industry Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe