An attachment is a computer file accompanying an e-mail.

Also called spambot, botnet is a network of zombie-PCs controlled by cybercriminals without the users knowing it. This network is then used for spam campaigns.

This is a statistic technique based on words analysis. Some words are more likely to appear in spam. In order to operate fully, the corpus of legitimate spam and e-mails must ideally contain many thousands of "specimens".

Blacklist system is a list of domains known to transmit spam.

This filter consists in detecting within messages techniques used by spammers to outmaneuver anti-spam solutions by using traditional filtering methods. For instance, a Bayesian filtering is inefficient against techniques such as hidden or font-reduced texts.

This is an attack aiming at making a service unavailable such as obstructing e-mail distribution via network saturation method or via listening capabilities of servers.

DomainKeys Identified Mail is an identification norm for the e-mail sender's domain name. This norm enables protection against attacks like phishing for example.

This is an internet server which generates a connection between IP address (e.g.: 209.85.143.104) and domain name (in this case google.fr).

This is an attack aiming at leading a DNS server astray when trying to generate connection between IP address and domain name.

This filter is based on detection of false within SMTP relays and within information contained in the header of messages, with the decisive advantage of identifying similar operating procedures, regardless of the type of message circulated.

These are rules based on previous positive experiences which are used for the heuristic filtering.

This is an illegitimate message wrongly reckoned as a legitimate by an anti-spam filter.

This is a legitimate message wrongly reckoned as illegitimate by an anti-spam filter.

Greylisting is a technique consisting in temporarily rejecting a message, by issuing a temporary rejection code to the sending server (MTA).

Term used for legitimate e-mails. Synonym: legitimate e-mails

When a message contains a HTML part (most common case), a « fingerprint » of this HTML code is set according to an exclusive method. During filtering process, this fingerprint is compared to a list of patterns widely used by spammers. This method, associated with a technique of statistics on the sizes of images, enables to identify, among other things, some unwanted messages only containing one or many images and no text.

Deliberately created lure to trap spammers and analyze thir techniques in order to counter future waves of spam.

Heuristic analysis is a technique based on a complex process of empirical rules, unpredictible, deduced from an in-depth analysis of all components within a message (headers, text of the subject, body of the text, html, attachments...).

This is an electronic message coming from a safe source and complying with e –mail sending norms. Synonym: Ham

This is a server software which aims at transferring e-mails to another server. A number of rules of protocol can be defined on the MTA to do a massive pre-filtering on the IP address or the original domain name.

This is a report generated by your messaging system each time the message could not be delivered.

This is a technique used by spammers to collect personal data aiming at usurping identity or drawing money off by posing as a third party organization (bank, social security, Ministry, e-commerce website) For more information, visit our page techniques used

The Predictive Heuristic Filter (PHF) is an exclusive technology developed by Vade Retro Technology capable of anticipating some spam or virus before they even spread. This technology is a response to the incompressible intervention time of editors which imperatively requires an engine update or signatures when a new attack emerges.

RBL (Real-time Blackhole) identifies confirmed sources of spam using IP addresses lists.

RPD (Recurrent Pattern Detection) is a filtering technique based on the rate of propagation for an e-mail throughout the internet network. For instance, when an e-mail is sent millions of times throughout the world, it can be considered dubious.

This is a filtering technique which verifies coherence between IP and domain name of the e-mail sender.

Rustock was a botnet/spambot operating from 2006 and dismantled in 2011.

Sender Policy Framework (SPF) is a norm to verify the domain name of an e-mail sender to avoid sending spam with a fake or usurped address.

Scam, also called fraud 4-1-9 or Nigerian scam, is a spammer technique aiming at abusing the credulity of victims. It is in the form of an e-mail in which a person promises money (inheritance, funds placed abroad) in exchange for financial support. For more information, visit our page techniques used

A script is a computer program running with another program which interprets and runs it.

Also called botnet a spambot is a network of zombie-PCs controlled by cybercriminals without the users knowing it. This network is then used for spam campaigns. Synonym: Botnet

Spammer is the word referring to the person who sends illegitimate or unwanted e-mails (spam).

It is a phishing based on personal information collection (obtained especially on social networks) which will enable the pirate to lead a personalized attack to get confidential data.

Spyware is often contained in the attachment of an illegitimate e-mail. This program then settles into the computer with the objective of collecting and immediately sending personal data to the spyware owner.

Filtering method based on rejection or sorting of e-mails according to pre-established vocabulary rules defining words as forbidden.

Term used to describe illegitimate e-mail. Synonyms: unwanted message, illegitimate e-mail For more information, visit our page definition of spam

SMTP is a dialog protocol between several servers allowing exchange of e-mails

Technique consisting in keeping a SMTP connection active while constraining it to reduce transmission of electronic message

This technique, also called « challenge/response », consists in sending back an authentication request e-mail (via reproduction of a displayed code) to the sender of the message to insure real physical existence.

Trojan horse is normally a classical software enabling to put malicious actions in place without the users knowing it.

Whitelist system is a list of domains considered sure and not spreading unwanted messages.

It defines a computer controlled, against user's will, by botnet. The zombie-PC is thus put under the commands of cybercriminals. Theses latter usually use them to send spam in mass without the user knowing it. For more information, visit our page techniques used