Networking: Virus writing for profit

"Spammers are now paying virus writers to make new viruses that create zombie networks that are used to send fraudulent or phishing e-mails," said John Dickinson, author of the book, "The New Anti-Virus Formula: How to Use Multilayered Security to Defeat Viruses."

Dickinson added, "The so-called phishing variant induces people to turn over the keys to their financial accounts, leading to outright theft."

Kaspersky Lab, an Internet-security company in Moscow, reports increasing evidence of criminal activity in this field since December 2004. Over the past year, company researchers have found, the virus-writing community has moved from pranksters to pros, with the result that between 70 percent and 90 percent of all malware detected by Kaspersky Lab has been written for criminal purposes, instead of the previous aim of gaining the virus writer international notoriety.

Shane Coursen, Kaspersky Lab's senior technical consultant in the United States who recently published a scholarly paper called "The Changing Threat," said virus writing is becoming a for-profit endeavor, with goals as varied as personal-identity theft to corporate espionage.

"The threat in its mildest forms -- which too often defy successful criminal prosecution -- results in disruption of day-to-day business, taking a significant toll on the profitability of companies of all sizes," Coursen said.

Other experts said collaborations between virus writers and spammers constitute a natural, symbiotic partnership.

"Anyone can send spam or a phishing e-mail," said Patrick Peterson, chief technology officer at IronPort, an IT security technology developer in San Bruno, Calif. "There are two magic ingredients to economic success on a large scale. The first is in controlling a large enough network of open proxies and compromised hosts to blast e-mail without having your footsteps traced. This is accomplished with viruses."

Next, Peterson continued, the criminals need to be able to transform stolen credit-card numbers and online bank-account numbers into cash.

"This is uniquely aligned with organized crime," he said. "Organized criminals have aggressively inserted themselves into the e-mail fraud ecosystem and play the primary role in networks like carderplanet.com and shadowcrew, which steal millions of credit-card numbers every year."

One of the fastest-growing markets for these criminal collaborators is overseas, experts said. For example, South American banks are considered a prime target for online fraud criminals. On a daily basis, according to MessageLabs, an IT-security company in New York City, approximately 20 Web sites are discovered that harbor malware aimed at compromising predominantly South American banks.

Authorities recently arrested 15 suspects from Spain, Argentina, Italy and Romania who were targeting customers in South America with illegal spam-virus combos.

According to Alex Shipp, senior anti-virus technologist at MessageLabs, the banking system in South American countries is generating a lot of interest in Internet banking, even more so than in the United States or Europe.

"This makes online banks a prime target for the high-tech gangs operating in the region who can get rich quick by selectively targeting local economic interests," Shipp said.

One tactic used by the spammers and virus writers is sending virtual postcards. In Brazil there is a massive craze for virtual-postcard sites, which allow people to send e-cards to loved ones and friends.

Shipp said, however, that these sites also provide an easy social-engineering opportunity for criminals wanting to steal users' confidential details.

"By tricking victims into downloading a Trojan instead of an electronic postcard, they can then start to monitor internet traffic with the goal of stealing usernames and passwords," he said.

Copyright 2005 by United Press International

Lack of political will and the subordination of women are major barriers to tackling AIDS
Denial, myths, complacency, lack of political will and the subordination of women are major obstacles in the fight against HIV and AIDS. And with no cure or vaccine in sight, scaling up prevention is of paramount importance, according to Professor Lars Kallings, a leading expert in the global fight against the world’s first modern pandemic.
Virological evidence cannot prove transmission in HIV criminal cases
Virological evidence cannot prove transmission in HIV criminal cases, warn experts in this week’s BMJ. Viral phylogenetics provides a way of assessing the relations between viruses from different people. It allows us to estimate the probability that viruses from two particular people have a recent common origin. But there are serious limitations on what can and cannot be inferred using this technique.
Networking: Is that bank's URL legitimate?
Computer-security professionals at the weekend were working on what is being described as a just-emerging IT problem -- the kind which, if the pros are correct, potentially could imperil all e-commerce across the globe. Hackers have apparently compromised the computer server of a Russian bank and set up a fake subsite to "phish" for credit-card information and other personal financial details, experts tell UPI's Networking.
Asia, U.S. high on spam-relaying report
Asia has the worst record for helping to relay spam, according to a new report from a computer threat solution management firm. Abingdon, U.K.-based company Sophos released a report Thursday that looks at "spam relaying" in the first quarter of 2006.
Outside View: Internet as apple of discord
The lower house of the Russian parliament (State Duma) and human-rights activists have clashed in an irreconcilable battle over the social role of Ru.net, the Russian segment of the World Wide Web.
Computer threats up 48 percent for year
New computer threats increased by 48 percent in 2005 as cybercriminals turn to targeted attacks.
US remains worst spamming nation
Security firm Sophos Inc. has published today its latest report on the top twelve spam relaying countries over the last six months. Beating China and South Korea, the United States is still the superpower of spam.
Report finds online attacks shift toward profit
IBM reported that virus-laden emails and criminal driven security attacks increased by 50 percent in the first half of 2005 - underscored by a significant rise in 'customized' attacks on the government, financial services, manufacturing and healthcare industries.

Networking: Virus writing for profit

Related stories:

News discussion: