February 10, 2008   Sign In |  About ebizQ |  Contact Us |  Join ebizQ Gold Club
Peter Schooff
Peter Twenty-Four Seven Security
 Peter Schooff's blog is a daily look at what's going on in the world of computer security with an emphasis on how it affects businesses.

« Huge Costs for TJX Data Breach | Main | Monster.com Data Theft a Multi-Stage Attack »

August 20, 2007
Cybercrime Gets Organized

Found an interesting article at PC World about Thomas J. Holt, an assistant professor in the Department of Criminal Justice at UNC (go Heels!), where for the past year they’ve been gathering information on the burgeoning online black market for malware and cyberthieves.

To locate the sites where cybercriminals bought and sold their wares, Holt had no inside criminal contacts to assist him, so he started just like anybody would, with a search on Google. After finding several sites that had cut-and-pasted postings from other sites, also called rippers, this lead him to the real black market sites where malware gets reviewed and sellers get ranked.

Online reviews varied from “The best program in its class I have ever seen!" to "One of the most powerful products on the market." Still another reads, "Works well... to find a new attacker." As reported by UNC Research, a typical transaction can cost anywhere from $100 dollars to more than $3,000.

These underground forums also feature product-testing reports, which detail if an illicit application does what it says it can. Certain sites even offer tech support and product updates, and in some cases feature escrow services, meaning they’ll act as a third party and hold onto the transaction money until both sides are satisfied with the deal.

Much like eBay, these sites allow sellers to garner a reputation until they can establish themselves as a “verified seller.” To maintain their anonymity, sellers use handles like Corpse or Cr4sh, and when one site shuts down, the reputations can often transfer to a new site. Thus, buyers can distinguish between who are the good/bad guys versus the bad/bad guys.

The team from UNC found sites in Vietnamese, Spanish, English, and Chinese, but the most common language was Russian. The many different languages made it difficult to find and shut down the sites, and while Holt says he does share his results with law enforcement, and has led to some sites getting busted up, it hardly made a dent in the online black market.

Posted by pschooff in Hackers |Digg This|Add to del.icio.us

Trackback Pings

TrackBack URL for this entry:
http://www.ebizq.net/mt/mt-tb.cgi/2243

Comments Post a comment




Remember Me?

(you may use HTML tags for style)

We ask that you type your code (displayed below) in the text box.This code is an image that cannot be read by a machine. It prevents automated programs from submitting comments.


Code:



Most Recent ebizQ Blog Entries
ADVERTISEMENT
Subscribe
News Feed
Recent Posts
Categories
Archives
Blog Roll
Blogosphere
This Work
Accountability:The opinions expressed in this blog are solely representative of the blog's author, and not of ebizQ
Subscribe to our Newsletters
ebizQ Weekly Gold Club Update
Live Webinar Updates
Updates from ebizQ Partners
ebizQ SOA Update
ebizQ BPM Update
ebizQ Security Update
ebizQ BI Update
ebizQ Open Source Software Update
Virtual Show Newsletter
Your E-mail Address:
BAM: The Killer App for CEP
Date: Feb 12, 2008
Time: 12:00 PM ET
(17:00 GMT)
I WANT TO ATTEND
Event Processing Market Pulse
Date: Feb 14, 2008
Time: 12:00 PM ET
(17:00 GMT)
I WANT TO ATTEND
Archived Webinars | Upcoming Webinars

Marketing Solutions | Feedback | About ebizQ | Unsubscribe | Privacy Policy | Site Map