Welcome,
Guest
. Please
login
or
register
.
April 23, 2024, 10:10AM
Home
CW.com
Shop
THKF
Help
FAQ
Search
Calendar
Login
Register
CelticWomanForum.com
>
Everything Else
>
General Discussion
(Moderators:
SusanZ
,
CRRopes
) >
Article about Crimeware
Pages: [
1
]
Go Down
« previous
next »
Print
Author
Topic: Article about Crimeware (Read 1363 times)
gcerny12
Full Member
Posts: 104
Article about Crimeware
«
on:
December 14, 2009, 07:00PM »
This came from one of my tech subscriptions at ZDNet. Thought you all might be interested.
Security researchers have intercepted a new variant of the Zeus crimeware, which is using Amazon’s EC2 services for command and control purposes of the botnet. The cybercriminals appear to be using Amazon’s RDS managed database hosting service as a backend alternative in case they loose access to the original domain, which would result in the complete loss of access to the compromised financial data obtained from the infected hosts.
Would 2010 be the year when crimeware will dive deep into the cloud, in an attempt to undermine the security industry’s take down operations? With the clear migration towards the abuse of legitimate infrastructure we’ve observed throughout the entire 2009, this may well be the case.
Despite the fact that this is the first publicly reported case of Zeus crimeware (Modern banker malware undermines two-factor authentication) campaign abusing Amazon’s cloud-based services, popular Web 2.0 services have also been under fire in recent months.
From the use of Twitter, to Google Groups and Facebook as command and control servers, these experiments clearly indicate that cybercriminals are cloud-aware, which isn’t surprising given that from a distributed computing perspective, some of biggest botnets currently online can easily top the Top 500 Supercomputing list.
What exactly are they trying to achieve, and isn’t the use of legitimate service for command and control purposes in fact a bad idea from a cybercriminal’s perspective, compared to a situation where they’ll be using the services of an ISP whose core competency lies in ignoring abuse notification and cooperation with the security industry and law enforcement in general?
It’s traffic camouflaging in the sense of making it harder to blacklist and detect potentially malicious activity hidden within the traffic stream between the infected host and a legitimate service.
Logged
My alter-ego when not listening to or watching CW.
By Joe Palomine
Pages: [
1
]
Go Up
Print
« previous
next »
Jump to:
Please select a destination:
-----------------------------
Administrator Notes
-----------------------------
=> Forum Guidelines
=> Announcements and Important Information
-----------------------------
The Cast
-----------------------------
=> Celtic Woman
===> CW News
===> CW Photos & Graphics
=> Alex Sharpe
===> Alex News
===> Alex Photos & Graphics
=> Chloë Agnew
===> Chloë News
===> Chloë Photos & Graphics
=> Deirdre Shannon
===> Deirdre News
===> Deirdre Photos & Graphics
=> Éabha McMahon
===> Éabha News
===> Éabha Photos & Graphics
=> Hayley Westenra
===> Hayley News
===> Hayley Photos & Graphics
=> Lisa Kelly
===> Lisa K News
===> Lisa K Photos & Graphics
=> Lisa Lambe
===> Lisa L News
===> Lisa L Photos & Graphics
=> Lynn Hilary
===> Lynn News
===> Lynn Photos & Graphics
=> Mairéad Carlin
===> Mairéad C News
===> Mairéad C Photos & Graphics
=> Máiréad Nesbitt
===> Máiréad N News
===> Máiréad N Photos & Graphics
=> Méav Ní Mhaolchatha
===> Méav News
===> Méav Photos & Graphics
=> Órlagh Fallon
===> Órlagh News
===> Órlagh Photos & Graphics
=> Susan McFadden
===> Susan News
===> Susan Photos & Graphics
=> Tara McNeill
===> Tara News
===> Tara Photos & Graphics
=> David Downes
===> David Photos & Graphics
=> Musicians and Choir
===> Musician & Choir Photos & Graphics
-----------------------------
The Show
-----------------------------
=> Voices of Angels
===> Voices of Angels On Tour
=> Destiny
===> Destiny On Tour
=> 10 Year Anniversary Tour
=> Emerald
===> The Emerald Tour
=> Home For Christmas
===> HFC - The Symphony Tour
=> Believe
===> Believe On Tour
=> Songs from the Heart
===> SftH On Tour
=> Isle of Hope
=> A New Journey
===> ANJ On Tour
=> A Christmas Celebration
===> ACC - The Symphony Tour
=> Celtic Woman: The Original Show
===> CW On Tour
=> Compilations & Collaborations
===> Lullaby
===> A Celtic Family Christmas
===> The Greatest Journey
=> Links
-----------------------------
The Cast
-----------------------------
=> The High Kings
=> Brian Dunphy
=> Darren Holden
=> Finbarr Clancy
=> Martin Furey
=> Musicians & Dancer
-----------------------------
THK - The Show
-----------------------------
=> On Tour
=> The Music
=> Photos and Images
=> Links
-----------------------------
Everything Else
-----------------------------
=> General Discussion
=> Celtic Culture
=> Fun and Games
=> Forum Questions & Comments
=> Members Helping Members
=> New Members
Loading...