Sanford 'Spamford' Wallace [1] (born c. 1968) [2] is an Internet spammer. He initially sent junk faxes before coming to notoriety in 1997, promoting himself as the original "Spam King". Wallace's prolific spamming has resulted in encounters with the United States government, anti-spam activists, and large corporations such as Facebook and MySpace.
In the late 1990s, his company, Cyber Promotions, aka Cyberpromo, was widely blacklisted as a source of unsolicited email. Wallace's high-profile pro-spam stance and unrepentant persistence earned him the derisive nickname 'Spamford'. [1]
Prior to his email spam ventures, Wallace had gained notoriety in other questionable marketing circles, as a heavy utilizer of junk fax marketing, a practice outlawed in the United States since 1991. [3]
In 1995, Wallace formed Cyber Promotions, entering the spam market. Thanks to a self-marketing campaign, Cyberpromo rapidly became the most successful seller of email marketing—as well as the number one source of unsolicited email. In 1996 he was sued by Concentric Network, an ISP, and entered into a consent decree not to use their network again. [4] After Cyberpromo failed to become a legitimate business, Wallace returned to junk faxing in late 1997. [3]
Wallace's company brought a number of spam-blocking evasion tactics to the fore of the spam battle. False return addresses, relaying, and multihoming were among the questionable practices used by Cyberpromo to ensure the penetration of their advertising.
In April 1998, Wallace publicly announced that he was quitting the spam business. Cyberpromo was converted to what he claimed was an "opt-in" email marketing company and renamed GTMI. The revised company was plagued by major financial problems, as well as the spectre of its former self, with large numbers of people unconvinced of Wallace's change of heart. Wallace pulled out of the new venture quickly. GTMI's problematic origin led to its rapid demise.
After Wallace's internet connection was disconnected for spamming in 1999, he filed a lawsuit against anti-spam activist Mark Welch, but abandoned the suit a month later.
As of October 2003 [update] , Wallace was working as a DJ in New Hampshire, making weekly appearances at area nightclubs. Wallace performed under the name DJ MasterWeb. [5] He was also the owner of a night club in New Hampshire called Plum Crazy, [6] which filed for bankruptcy in 2004.[ citation needed ] It appears that Wallace did not leave the Internet marketing business entirely. In 2001 he was linked to a website, passthison.com, which utilized multiple-window launching to snag Web viewers, an advertising practice rarely seen outside of the online pornography industry. Wallace was also involved in another opt-in project, SmartBotPRO.NET, which is now apparently also defunct.
On October 8, 2004, the Federal Trade Commission filed suit against Wallace and his company, SmartBOT, for infecting computers with spyware then offering a solution to remove the problem for $30. [7] In January 2005, it was announced that Wallace had agreed to stop distributing the software until the charges with the FTC are settled. [7] Subsequently, a default judgment was issued against Wallace forbidding him and associates from distributing spyware or any other software without consumer's consent. [7]
In March 2006, the FTC filed a suit [8] again against Wallace and SmartBOT for practices similar to the 2004 suit. This time Wallace and his co-defendants were ordered to pay $5,089,550.48 in fines. [9]
In 2007, MySpace filed suit against Wallace for phishing and spamming. [10] Wallace had used automated software not allowed by MySpace to create 11,000 fake profiles, in order to direct MySpace users to other websites. [11] In July 2007, US District Judge Audrey B. Collins issued an order prohibiting Wallace from creating or maintaining MySpace profiles, and from using MySpace to post public comments, or send private messages. In April 2008, the California Central District Court issued a default judgment against Wallace in MySpace's lawsuit, after Wallace failed to turn over documents or appear in court. [12]
On January 26, 2008, The Register reported that the FTC has asked the Judge overseeing the 2006 settlement to find Wallace and partner Walter Rines in civil contempt of court for their use of malware and social engineering on MySpace to promote porn and gambling sites. [13] In May 2008 Wallace and Rines were ordered to pay $230 million to MySpace by the L.A. District Court when they failed to appear for trial. [14]
Facebook sued Wallace in California District Court for posting spam messages on members' walls. Wallace has already been fined $4 million for installing ad-related spyware on peoples' computers, and was fined $230 million for his activities on MySpace, according to MediaPost. [15]
Wallace filed for bankruptcy in June 2009. [16] On October 29, 2009, federal judge Jeremy D. Fogel awarded Facebook $711 million in damages. [17] [18] Although Facebook believed it was unlikely to collect due to Wallace's bankruptcy, the presiding judge in the case also recommended criminal contempt charges against Wallace, which carry the possibility of incarceration. [18]
On August 4, 2011, Wallace was indicted by a federal grand jury in San Jose, California, on various counts of electronic mail fraud, intentional damage to a protected computer, and criminal contempt. The indictment followed a two-year investigation by the FBI into his alleged infiltration of Facebook accounts in order to spam its users. [19] Wallace denied the charges and was released on $100,000 bail. [20]
In August 2015, Wallace pleaded guilty to electronic mail fraud and criminal contempt of court as well as admitting to mass spamming in 2008 and 2009. [21] He also pleaded guilty to violating a court order to not access Facebook's computer network. [21]
In June 2016, Wallace was sentenced to thirty months in prison and ordered to pay hundreds of thousands of dollars in restitution for bombarding Facebook users. U.S. District Court Judge Edward J. Davila also sentenced Wallace to mental health treatment and five years of probation once he is released. Judge Davila barred Sanford Wallace of possessing or using any computer without the permission of the probation order. [22] He pleaded guilty to one count of fraud and related activity in connection with electronic mail and one count of criminal contempt of court. [23]
Wallace served his sentence in Colorado, [24] where he was assigned Federal Bureau of Prisons inmate number 16075-111. He was released from prison on May 21, 2018, after serving 21 months. [25]
Spamming is the use of messaging systems to send multiple unsolicited messages (spam) to large numbers of recipients for the purpose of commercial advertising, non-commercial proselytizing, or any prohibited purpose, or simply repeatedly sending the same message to the same user. While the most widely recognized form of spam is email spam, the term is applied to similar abuses in other media: instant messaging spam, Usenet newsgroup spam, Web search engine spam, spam in blogs, wiki spam, online classified ads spam, mobile phone messaging spam, Internet forum spam, junk fax transmissions, social spam, spam mobile apps, television advertising and file sharing spam. It is named after Spam, a luncheon meat, by way of a Monty Python sketch about a restaurant that has Spam in almost every dish in which Vikings annoyingly sing "Spam" repeatedly.
Spyware is any malware that aims to gather information about a person or organization and send it to another entity in a way that harms the user by violating their privacy, endangering their device's security, or other means. This behavior may be present in other malware and in legitimate software. Websites may engage in spyware behaviors like web tracking. Hardware devices may also be affected.
Computer and network surveillance is the monitoring of computer activity and data stored locally on a computer or data being transferred over computer networks such as the Internet. This monitoring is often carried out covertly and may be completed by governments, corporations, criminal organizations, or individuals. It may or may not be legal and may or may not require authorization from a court or other independent government agencies. Computer and network surveillance programs are widespread today and almost all Internet traffic can be monitored.
The Controlling the Assault of Non-Solicited Pornography And Marketing (CAN-SPAM) Act of 2003 is a law passed in 2003 establishing the United States' first national standards for the sending of commercial e-mail. The law requires the Federal Trade Commission (FTC) to enforce its provisions. Introduced by Republican Conrad Burns, the act passed both the House and Senate during the 108th United States Congress and was signed into law by President George W. Bush in December 2003 and was enacted on January 1, 2004.
Email spam, also referred to as junk email, spam mail, or simply spam, is unsolicited messages sent in bulk by email (spamming). The name comes from a Monty Python sketch in which the name of the canned pork product Spam is ubiquitous, unavoidable, and repetitive. Email spam has steadily grown since the early 1990s, and by 2014 was estimated to account for around 90% of total email traffic.
The Spamhaus Project is an international organisation based in the Principality of Andorra, founded in 1998 by Steve Linford to track email spammers and spam-related activity. The name spamhaus, a pseudo-German expression, was coined by Linford to refer to an internet service provider, or other firm, which spams or knowingly provides service to spammers.
Norton Internet Security, developed by Symantec Corporation, is a discontinued computer program that provides malware protection and removal during a subscription period. It uses signatures and heuristics to identify viruses. Other features include a personal firewall, email spam filtering, and phishing protection. With the release of the 2015 line in summer 2014, Symantec officially retired Norton Internet Security after 14 years as the chief Norton product. It was superseded by Norton Security, a rechristened adaptation of the original Norton 360 security suite. The suite was once again rebranded to Norton 360 in 2019.
Scott Richter is the CEO of Media Breakaway, formerly known as OptInRealBig.com LLC. Other related companies are Dynamic Dolphin and affiliate.com. His companies were major senders of Email spam and he was at one time referred to as the 'Spam King', as at one point his company was sending some 100 million emails a day. He and his companies have been sued several times for mass sending unsolicited advertisements.
Kevin Trudeau is an American author, salesman, and television personality known for promotion of his books and resulting legal cases involving the US Federal Trade Commission. His late-night infomercials, which promoted unsubstantiated health, diet, and financial advice, earned him a fortune but resulted in civil and criminal penalties for fraud, larceny, and contempt of court.
WinFixer was a family of scareware rogue security programs developed by Winsoftware which claimed to repair computer system problems on Microsoft Windows computers if a user purchased the full version of the software. The software was mainly installed without the user's consent. McAfee claimed that "the primary function of the free version appears to be to alarm the user into paying for registration, at least partially based on false or erroneous detections." The program prompted the user to purchase a paid copy of the program.
Spy Wiper, also known as Mail Wiper and Spy Deleter, is a malware program that was fraudulently sold as an antispyware program.
Rogue security software is a form of malicious software and internet fraud that misleads users into believing there is a virus on their computer and aims to convince them to pay for a fake malware removal tool that actually installs malware on their computer. It is a form of scareware that manipulates users through fear, and a form of ransomware. Rogue security software has been a serious security threat in desktop computing since 2008. An early example that gained infamy was SpySheriff and its clones, such as Nava Shield.
Spokeo is a people search website that aggregates data from online and offline sources.
Tagged is a social discovery website based in San Francisco, California, founded in 2004. It allows members to browse the profiles of any other members, and share tags and virtual gifts. Tagged claims it has 300 million members as of 2014. As of September 2011, Quantcast estimates Tagged monthly unique users at 5.9 million in the United States, and 18.6 million globally. Michael Arrington wrote in April 2011 that Tagged is most notable for the ability to grow profitably during the era of Facebook.
MyLife is an American information brokerage firm. Founded by Jeffrey Tinsley in 2002 as Reunion.com, it changed names following a 2008 merger with Wink.com. MyLife gathers personal information through public records and other sources to automatically generate a "MyLife Public Page" for each person. These pages can list a variety of personal information, including an individual's age, past and current home addresses, phone numbers, email addresses, employers, education, photographs, relatives, political affiliations, a mini-biography.
United States v. Kilbride, 584 F.3d 1240 is a case from the United States Court of Appeals for the Ninth Circuit rejecting an appeal from two individuals convicted of violating the Can Spam Act and United States obscenity law. The defendants were appealing convictions on 8 counts from the District Court of Arizona for distributing pornographic spam via email. The second count which the defendants were found guilty of involved the falsification of the "From" field of email headers, which is illegal to do multiple times in commercial settings under 18 USC § 1037(a)(3). The case is particularly notable because of the majority opinion on obscenity, in which Judge Fletcher writes an argument endorsing the use of a national community obscenity standard for the internet.
CompuServe Inc. v. Cyber Promotions, Inc. was a ruling by the United States District Court for the Southern District of Ohio in 1997 that set an early precedent for granting online service providers the right to prevent commercial enterprises from sending unsolicited email advertising – also known as spam – to its subscribers. It was one of the first cases to apply United States tort law to restrict spamming on computer networks. The court held that Cyber Promotions' intentional use of CompuServe's proprietary servers to send unsolicited email was an actionable trespass to chattels and granted a preliminary injunction preventing the spammer from sending unsolicited advertisements to any email address maintained by CompuServe.
Yahoo! has been a party to several instances of litigation.
America Online, Inc. v. IMS, 24 F. Supp. 2d 548 was one of a series of legal battles America Online launched against junk e-mail. In this case, the court held that defendants' unauthorized mailing of unsolicited bulk e-mail constituted a trespass to chattels under Virginia state law.