Even though the Internet is flooded with spam today, not much attention is paid to it. Garbage registration is a major source of all business security issues in web applications. Several case studies have found that garbage registration issues existed for long. Among all the new daily registrations to any large website, half of them are garbage registrations. What is the need for so many registered accounts?
Mostly, the purpose of these spam accounts is to send advertising materials across the web, promote specific political views, or cheat other users.
How to define an account as a spam account? Generally, if users are not registering to a website to avail their services ethically, they are spam accounts. For example, some web resources such as forums allow members to buy legal copies of films (paid movies) from other websites. Every purchase involves paying in virtual gold. Virtual gold is paid in different ways; members who have virtual gold balance send posts in the forum to get films or they recharge their balance through online banking. Some of these websites gift each new registration with 10 gold coins in order to encourage new registrations. This gives malicious users an opportunity. For availing the free gold coins, malicious users register thousands of accounts overnight and then transfer all of it to one account and ultimately spend these coins in the forum.
These accounts become junk accounts. The forum would have received some benefits from the user activity; however, the websites bear all the costs.
This is a typical case about garbage registration using logical vulnerability in user registration. Registered garbage accounts are also used for advertisement and promotion of information. The user interaction resulting from some specific messages online can also provide opportunities for spam messages.