Agobot source code
AGOBOT SOURCE CODE SOFTWARE
They even have a mechanism to test the code to make sure it is legitimate and will get past anti-virus software Jim Melnick, idefense This exploit could be bought from a number of specialised sites.
AGOBOT SOURCE CODE PROFESSIONAL
They are done in an organised manner from start to finish Mikko Hypponen, F-Secure Last year was the first year that proceeds from cybercrime were greater than proceeds from the sale of illegal drugs cybercrime is moving at such a high speed that law enforcement cannot catch up with it Valerie McNiven, US Treasury advisor on cybercrimeģ The Malware Industry Publicity virus: Written by bored script kiddies Poorly tested, often barely works Spam/phishing virus: Written by paid professional programmers Well-tested, can be quite sophisticated The Babylonia virus used plug-in virus modules (VMODs) downloaded on-demand by the virus body The Hybris worm uses digitally-signed encrypted updates propagated via web servers and newsgroups The attack demonstrated the same skills required to design an entire software application Dan Frasnelli, NetSec The Malware Industry (ctd) Serious money can buy serious expertise Spam vendors are employing professional linguists to bypass filters Phishers use psychology graduates to scam victims They have better experts than we do! Talented employees can earn $200,000+ per year Remote root zero-days can go for $50-100,000Ĥ The Malware Industry (ctd) Obtaining new recruits Russian script kiddie runs a botnet ISP notices this and reports it to their mafia contacts Mafia visits the kid and makes him an offer he can t refuse Kid is now working for the Russian mafia Kernel-mode rootkits can be bought from third-party developers Outsourcing the anti-detection code allows malware authors to concentrate on the payload The Malware Industry (ctd) Zero-days are sold online Windows Vista (-1)-day was available for $50K before Vista was even released!ĥ The Malware Industry (ctd) There are dozens of these sites with hackers offering zero-day code for sale all the time. spammers hiring professional linguists We can t repel firepower of that magnitude Some History: The Numbers Racket (ctd) Once organised crime got involved, everything changed The modern spam industry now is spread across the globe and has become infested by technically organised programmers from Russia and Eastern Europe, often in league with local organised crime syndicates Colin Galloway, Asia Times Most of the big outbreaks are professional operations. 1 The Commercial Malware Industry Peter Gutmann University of Auckland Some History: The Numbers Racket The numbers racket = Lotto before the government took it over Run through barber shops, groceries by local operators A single drugstore phone line often served an entire neighbourhood s communications needs Bets were for cents Players chose a 3-digit number Drawn using the last 3 digits of the total amount bet on parimutuel racetrack betting machines Seen as a harmless vice, no-one paid much attention to itĢ Some History: The Numbers Racket (ctd) Then organised crime moved in Dutch Schultz took over from existing operators They weren t career criminals and were intimidated by explicit death threats Dutch hired mathematician Otto Aba Daba Berman to fix the numbers racket Ensure that heavily-played numbers never won No-one had ever considered this level of attack c.f.