AOH :: ISNQ5233.HTM
Security researchers unpick botnet economics
|
Security researchers unpick botnet economics
Security researchers unpick botnet economics
This message is in MIME format. The first part should be readable text,
while the remaining parts are likely unreadable without MIME-aware tools.
--1457021584-483968501-1248764827=:27254
Content-Type: TEXT/PLAIN; CHARSET=UTF-8
Content-Transfer-Encoding: QUOTED-PRINTABLE
Content-ID:
http://www.theregister.co.uk/2009/07/24/botnet_economics/
By John Leyden
The Register
24th July 2009
The economics of botnets and the sale of stolen information in
underground bazaars have been detailed in greater depth then ever before
in new research from Kasperky Lab.
Infecting PCs with strains of malware that leave them open to remote
control by hackers has been the mainstay of various forms of cybercrime
- spamming, identity theft and distributed denial of service attacks -
for some years. Kaspersky's research highlights the asking price for a
variety of criminal services rather then uncovering anything new, but
is nonetheless valuable in shining a light on the financial
motivations that nowadays lie behind many internet security and
privacy-related threats.
The paper - The Economics of Botnets - also charts the evolution from
centrally controlled systems with a single C&C towards far more
sophisticated and distributed systems with decentralized control, which
are far more difficult to shut down. Botnets are established by
distributing backdoor code, often using drive-by download attacks via
compromised websites, or rented via underground forums.
Once acquired, a would-be cybercrook has multiple potential sources of
income: DDoS attacks, theft of private information, spam, phishing, SEO
(Search Engine Optimisation) spam, click fraud and distributing adware.
Not that there's any need to be selective. "A botnet can perform all of
these activities=E2=80=A6 at the same time," notes Kaspersky researcher Yury
Namestnikov.
Namestnikov sketches out the potential financial rewards from running a
botnet, as summarised below:
[...]
--1457021584-483968501-1248764827=:27254
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
Attend Black Hat USA, July 25-30 in Las Vegas,
the world's premier technical event for ICT security experts.
Network with 4,000+ delegates from 50 nations.
Visit product displays by 30 top sponsors in
a relaxed setting. http://www.blackhat.com
--1457021584-483968501-1248764827=:27254--
Site design & layout copyright © 1986- CodeGods