An avalanche of unwanted post could be released upon an unsuspecting victim using nothing more than an internet connection and some simple code, a team of US researchers says.

The attack, devised by Aviel Rubin at Johns Hopkins University and Simon Byers and David Kormann at AT&T Labs, involves automatically subscribing a victim to hundreds of thousands of catalogue request forms that are available online.

Using search engines to instantly locate such forms and then simple code to automatically feed a victim’s name and address into them, the researchers say such an attack would be dangerously simple to carry out.

More here.