FacebookTwitterGoogle+RedditEmail

A Short History of Spam

by FINN BRUNTON

Objects can talk in cartoons and fairy tales: toys tell their stories. Now our domestic appliances have begun to speak, and they would like to sell us pills and porn, and for us to give them our bank details. Now that there are microchips and network connections in toasters and televisions, many devices have been turned into spam machines — the smart refrigerator broadcasting illicit messages or the kettles imported into Russia with small computers that search for Wifi networks to use as spam channels. Despite some exaggerations, the Internet of Things is, like the regular net, being swiftly adapted to spam.

What do we mean by spam? Spam is a strange language, a baroque profusion of neologisms, jargon and slang. It mixes the lexicons of computer science, security engineering, law enforcement, criminals (professional and amateur) and the polyglot net: Bayesian poisoning (getting around or corrupting anti-spam filters), bots and botnets (networks of zombie machines), spings (spam+ping) and splogs (spam+blog), victim clouds and rally boxes, worms and phishing, lulz and linkbait (links designed to entice users to click on them) and ransomware. Spamming uses the rich phraseology of scam artists and conmen in a 21st-century setting, online — the thieves’ cant of suckers and marks, the come-on.

This problem of language begins with the word “spam”, which we struggle to define precisely. Most email — 85% plus — is spam, and is intercepted by filtering systems that we never see. Spam can include tweets, Facebook posts, text messages, blogs, comments, sites, edits on wikis and still newer forms of online expression. People have been fined and jailed for feeding this colossal machine, companies closed down, websites de-indexed from Google’s search returns, and entire countries (briefly) harmed. Spam has shaped the net and the services, systems, populations and publics that use it in fundamental ways.

In the 1970s — before the web or the formalisation of the Internet, before Minitel and Prestel and America Online — US graduate students sat in basements, typing on terminals that connected to remote machines somewhere. They did it by night, because by day computers were used for big, expensive projects. They wrote programs, created games, traded messages and played pranks and tricks. Being nerds, they shared a love of science fiction and the absurd. Monty Python’s Flying Circus was a favourite and Python lines were volleyed back and forth — the dead parrot sketch and the spam sketch (first broadcast by the BBC in 1970) with Vikings loudly singing “Spam, Spammity Spam, wonderful Spam!” The sketch caught on. The nerds wrote a simple program that, at the right spot, would post “SPAM! SPAM! SPAM! SPAM! SPAM! SPAM! SPAM! SPAM!” without pause, filling the screen, killing the discussion, and often overloading the chat platform, kicking people offline. It was annoying but mischievous rather than malign, like blowing a vuvuzela in the middle of a conversation. This noisy behaviour became known as spamming.

The term came in useful through the 1980s to categorise postings that were indiscriminate, time-wasting, verbose, off-topic, tedious or ranting. Then two lawyers from Arizona posted a message across the discussion system Usenet (forerunner of the Internet), offering their services to thousands of users across the world to improve their chances in the US Green Card lottery that gives residency rights in the US. The Usenet community settled on “spam” as the term for the commercial message. The word had jumped closer to how we understand it now.

Those lawyers were offering an actual service, if bordering on fraud: you could call a real telephone number and make an appointment with them. And with much of the spam that followed you really could buy quack weight-loss pills, deadstock toys or counterfeit watches. This kind of spam was despised was but more or less legitimate, if only by accident. Except for “advance fee fraud” or “Nigerian prince” letters (“Dear Sir, We have one point two million [1,200,000] US DOLLARS on account for you…”), spammers spambruntonpresented themselves as brashly inventive promoters, with postal addresses and registered trademarks, seeking recognition as entrepreneurial hustlers. Many people still think of spam as those enthusiastic pitches full of mangled grammar and implausible photography, selling dubious pleasures from timeshares and self-help books to diets and porn. But their time was quite short, before spam was profoundly transformed into what it is today.

When you receive spam today in your inbox or Twitter account, or see a spam comment on a blog, you are very likely the first human to have laid eyes on it. It is the product of layers of wholly computational work for which humans merely set the parameters, assembled and passed around the world on a chain of mechanical writers and readers. Over the past decade, strong anti-spam legislation was implemented and enforced by many countries — some of the most egregious spammers faced fines and jail time — and effective filtering systems for email were developed and widely adopted. To abide by the law, the spammer had to include mandated text in messages: links to unsubscribe and postal addresses for complaints. This text was perfect for the filtering systems, which looked for suspicious words and phrases to indicate spam messages, to intercept and discard, sparing us the burden of reading it at all. Legitimate spammers were trapped, and the illegitimate faced a challenge.

Zombies and botnets

Beating the filters was difficult, and they successfully stopped many spam messages. It needed a huge apparatus, tens of thousands of computers sending thousands of messages each, all day, from net addresses around the planet, to have enough spam messages get through to make it worthwhile. It needed a global spam machine — and that was what was built.

Spam messages began to contain strange links or attachments, which naïve users would click and download, or execute, unknowingly giving control of their machines to a remote spammer. While the computer’s nominal user filled in a spread sheet or played Solitaire, the computer — now a zombie or bot machine — quietly downloaded instructions, templates and address lists, and began sending out spam messages hundreds of times a minute. Along with all the other compromised computers in the botnet, it was modifying, evolving, and rewriting these messages, testing them against the automated anti-spam filters that were attempting to stop spam.

Today, these botnets have grown so large that they stitch computers in countries around the world into a seamless resource for criminals — a victim cloud, as security analysts put it. (These botnets develop diurnal rhythms: as the Earth rotates and people in different time zones turn off their computers, the botnet shows a circadian pulse.) The spammer’s project is now criminal: it is the business of scrubbing machines for credit card numbers and account passwords, taking over accounts to defraud friends and family with desperate requests for money, and renting out the botnet for projects such as denial-of-service attacks, using the zombified computers to overload servers for a website, to extort money or knock an adversary offline.

We are all embedded in this system. Our legitimate emails help train the filters, making them better at separating mail from spam. The operation of search engines such as Google has been shaped by the fight against the effects of spam. Followers on Twitter are often just spam programs, trying to trick humans into clicking a link (“hey, @you, check out this funny meme”) or feigning humanness so they can be rented out to boost follower numbers; they “work” for those businesses whose ads you see online promising 10,000 followers to give your account an air of influence. (Twitter isn’t revealing how much of its user base is algorithmic, but savvy guesswork suggests that the total number of spambot programs on Twitter could approach a third of all users.) Our insecure computers provide the resources for the global botnet.

The legacy of spam is a negotiation over how the Internet is to be used, and what it is for. To answer that means figuring out what is a legitimate, reasonable, honest expression of the technology. Spam is the net’s shadow history, and the ocean of machine noise around the island on which we live.

Finn Brunton is the author of Spam: a Shadow History of the Internet, MIT Press, 2013.

This article appears in the excellent Le Monde Diplomatique, whose English language edition can be found at mondediplo.com. This full text appears by agreement with Le Monde Diplomatique. CounterPunch features two or three articles from LMD every month.

More articles by:
May 25, 2016
Eric Draitser
Obama in Hiroshima: A Case Study in Hypocrisy
Ryan Mallett-Outtrim
Does Venezuela’s Crisis Prove Socialism Doesn’t Work?
Dan Arel
The Socialist Revolution Beyond Sanders and the Democratic Party
Marc Estrin
Cocky-Doody Politics and World Affairs
Sam Husseini
Layers of Islamophobia: Do Liberals Care That Hillary Returned “Muslim Money”?
Susan Babbitt
Invisible in Life, Invisible in Death: How Information Becomes Useless
Mel Gurtov
Hillary’s Cowgirl Diplomacy?
Kathy Kelly
Hammering for Peace
Dick Reavis
The Impeachment of Donald Trump
Wahid Azal
Behind the Politics of a Current Brouhaha in Iran: an Ex-President Ayatollah’s Daughter and the Baha’is
Jesse Jackson
Obama Must Recommit to Eliminating Nuclear Arms
Colin Todhunter
From the Green Revolution to GMOs: Living in the Shadow of Global Agribusiness
Binoy Kampmark
Turkey as Terror: the Role of Ankara in the Brexit Referendum
Dave Lindorff
72-Year-Old Fringe Left Candidate Wins Presidency in Austrian Run-Off Election
May 24, 2016
Sharmini Peries - Michael Hudson
The Financial Invasion of Greece
Jonathan Cook
Religious Zealots Ready for Takeover of Israeli Army
Ted Rall
Why I Am #NeverHillary
Mari Jo Buhle – Paul Buhle
Television Meets History
Robert Hunziker
Troika Heat-Seeking Missile Destroys Greece
Judy Gumbo
May Day Road Trip: 1968 – 2016
Colin Todhunter
Cheerleader for US Aggression, Pushing the World to the Nuclear Brink
Jeremy Brecher
This is What Insurgency Looks Like
Jonathan Latham
Unsafe at Any Dose: Chemical Safety Failures from DDT to Glyphosate to BPA
Binoy Kampmark
Suing Russia: Litigating over MH17
Dave Lindorff
Europe, the US and the Politics of Pissing and Being Pissed
Matt Peppe
Cashing In at the Race Track While Facing Charges of “Abusive” Lending Practices
Gilbert Mercier
If Bernie Sanders Is Real, He Will Run as an Independent
Peter Bohmer
A Year Later! The Struggle for Justice Continues!
Dave Welsh
Police Chief Fired in Victory for the Frisco 500
May 23, 2016
Conn Hallinan
European Union: a House Divided
Paul Buhle
Labor’s Sell-Out and the Sanders Campaign
Uri Avnery
Israeli Weimar: It Can Happen Here
John Stauber
Why Bernie was Busted From the Beginning
James Bovard
Obama’s Biggest Corruption Charade
Joseph Mangano – Janette D. Sherman
Indian Point Nuclear Plant: It Doesn’t Take a Meltdown to Harm Local Residents
Desiree Hellegers
“Energy Without Injury”: From Redwood Summer to Break Free via Occupy Wall Street
Lawrence Davidson
The Unraveling of Zionism?
Patrick Cockburn
Why Visa Waivers are Dangerous for Turks
Robert Koehler
Rethinking Criminal Justice
Lawrence Wittner
The Return of Democratic Socialism
Ha-Joon Chang
What Britain Forgot: Making Things Matters
John V. Walsh
Only Donald Trump Raises Five “Fundamental and Urgent” Foreign Policy Questions: Stephen F. Cohen Bemoans MSM’s Dismissal of Trump’s Queries
Andrew Stewart
The Occupation of the American Mind: a Film That Palestinians Deserve
Nyla Ali Khan
The Vulnerable Repositories of Honor in Kashmir
Weekend Edition
May 20, 2016
Friday - Sunday
Rob Urie
Hillary Clinton and Political Violence
FacebookTwitterGoogle+RedditEmail