Cybercrime heads to the cloud

By Nick Heath, Special to ZDNet Asia
Monday, November 03, 2008 07:02 AM

Cloud computing crimeware means networks of zombie machines can be hired to steal online banking details for as little as US$299 per month.

Fraud-as-a-service is opening up computer crime to people with no technical expertise warned Uri Rivner, head of new technology at security company RSA.

Speaking at the RSA Conference 2008 in London, Rivner laid the pricing bare, revealing how fraudsters offered botnet networks as a subscription service with patching and upgrades thrown in.

These networks could be tailored to infect other users' computers with malware, or to launch massive distributed denial of service attacks designed to take down computer systems.

Rivner said: "This is the danger with making this technology open to the mass market.

"Anybody can become a high-end online fraudster."

Malware is also being sold for both the high end and budget markets, from the US$1,000 Zeus Trojan--a sophisticated Trojan that harvests data and entrenches itself in the system--down to US$350 for the Limbo Trojan.

Rivner said the fraudsters usually split their roles between the "harvester", the hacker who writes and deploys the malware to steal the details, and a "cash-out" criminal who will handle the money.

Cash-out fraudsters use "money mules", who are often recruited unwittingly as "finance officers" working from home, to have the dirty money laundered through their account.

Nick Heath of Silicon.com reported from London.


WORTHWHILE?

0

0 votes
Blog

Talkback 1 comments

Criminals Invented Cloud Computing
I hate to tell you this, it wasn't Amazon, IBM or even Sun who invented cloud computing. It was criminal technologists, mostly from eastern Europe who did. Looking back to the late 90's and the use of decentralized "warez" darknets. These original private "clouds" are the first true cloud computing infrastructures seen in the wild. Even way back then the criminal syndicates had developed "service oriented architectures" and federated id systems including advanced encryption. It has taken more then 10 years before we actually started to see this type of sophisticated decentralization to start being adopted by traditional enterprises. Full Response > www.elasticvapor.com...
Posted by Reuven on Monday, November 03 2008 10:30 AM


Tech Jobs Now!

Search for your ideal tech job:

News from Countries/Region

Common ways IT wastes money on development

Web Development

Examples include using developers as support staff and failing to calculate a project's ROI before giving it the go-ahead.


Read more »



  • Enterprise 2.0

    Vince Casarez, vice president of product management at Oracle, explains how Web 2.0 technologies, such as tags, wikis, and mash-ups, can be applied within an organization.
    Play video


  • Nehalem Architecture

    What makes next-generation Intel® Microarchitecture (Nehalem) such a superior successor?
    Play video

 
On demand CRM goes strategic
CRM technology has come of age, and is now able to align with your customer strategy and grow in step with your business.

» Learn more about Oracle’s CRM Solutions


Free the untapped potential of your IT infrastructure
Reduce bottlenecks to drive the efficiency and productivity of Business IT.
» Ultimate virtualization blade
» Scalable SAN solution
» Accelerate service delivery

Could this be the most critical budget for India?

Blog thumbnail

For business journalists in India, budget time is excitement time. It's like sports journos covering the Olympics. As a newspaper correspondent, I too had my fill of budget-time excitement. But..... by Swati Prasad

Read more »

Tags

  1. attack
  2. bank
  3. blog
  4. data security
  5. e - mail
  6. hacking
  7. internet
  8. malware
  9. microsoft corp.
  10. network
  11. network security
  12. pc security
  13. researcher
  14. security
  15. security management
  16. software
  17. spam and phishing
  18. u.s.
  19. viruses and worms
  20. web