Image spam

Image spam is a kind of E-mail spam where the message text of the spam is presented as a picture in an image file. Since most modern graphical E-mail client software will render the image file by default, presenting the message image directly to the user, it is highly effective at circumventing normal E-mail filtering software.

The basic rationale behind image spam is that it is difficult to detect using spam filtering software designed to detect patterns in text in the plain-text E-mail body. Attempts to filter text in image spam are easily defeated because optical character recognition of text in image spam can be prevented using a variety of obfuscation techniques which will not prevent the spam image from being read by human beings. This is the same phenomenon exploited by CAPTCHAs, but put to the ends of spammers, rather than to deter their activity.

Obfuscation techniques can include:

• Blurring of text outlines
• Construction of the image from multiple image layers assembled within an HTML e-mail
• Use of animated image formats
• Random noise added to the image (also known as confetti) to prevent the detection of multiple similar images using hash algorithms

Currently, the surest known countermeasure for image spam is to discard all messages containing images which do not appear to come from an already whitelisted E-mail address. However, this has the disadvantage that valid messages containing images from new correspondents must either be silently discarded, or that bogus "backscatter" bounce messages must necessarily be generated to the reply-to addresses in junk mail messages, enabling denial-of-service attacks by spammers.

Most mailers can also be configured to display pictures only when requested.

fr:Spam image