ZDnet recently posted a report from Commtouch about how spammers and hackers seem to be trending away from botnets, and going after compromised personal email and social accounts instead (hotmail, gmail, facebook, etc). They found that of the spam sent from Hotmail, almost 30% came from compromised accounts. Perhaps not so coincidentally, Hotmail just released a new "my friend’s been hacked" reporting mechanism.
Even though these reports center around personal webmail services and personal social accounts, ESP customers should look into beefing up their security as well.
Over the last couple years, attacks on ESPs have been on the rise. Sometimes, the ESP has been breached, but more commonly it’s an end user (or the end-user’s marketing agency) that unwittingly gives their account credentials to spammers (usually via malware on their computers).
So here’s a not-so-gentle reminder to MailChimp users, and especially MailChimp users who manage multiple accounts: GO ACTIVATE OUR SECURITY FEATURES.
In case you missed the recent announcements: