[OPLIN 4cast] OPLIN 4Cast #202: The Business of Bots

Editor editor at oplin.org
Wed Nov 3 10:29:22 EDT 2010 

Email not displaying correctly? View it in your browser. 
<http://www.oplin.org/4cast/>
OPLIN 4Cast

OPLIN 4Cast #202: The Business of Bots
November 3rd, 2010

robot 
<http://www.oplin.org/4cast/wp-content/uploads/2010/11/Robot18.gif>Now 
that we've left Cybersecurity Awareness Month behind us 
(October, but you might not have seen it on your calendar) 
as well as the barrage of robot calls that always precedes 
an election, it seems like a good time to catch up on the 
news from the world of botnets 
<http://en.wikipedia.org/wiki/Botnet>, the pesky tools of 
cyber criminals that can take control of public PCs and turn 
them into bot zombies under the control of nasty people. 
We're not trying to give you a post-Halloween scare---if you 
keep your security software up to date you should be OK---we 
just thought it's interesting how similar the criminal 
botnet business is to many other online business ventures.

    * The rise of the small botnet
      <http://www.securityweek.com/rise-small-botnet>
      (Security Week/Ram Mohan) "Today, would-be criminals
      can choose to buy the latest version of kits such as
      ZeuS, or even ready-made botnets, for as little as
      $2,500, which is not a large sum when you consider
      that the potential rewards could quickly add up to
      tens or even hundreds of thousands of dollars. Cracked
      versions of such tools are sometimes made available
      for free, which has caused some toolkit developers to
      add DRM protections to their software. Indeed, this
      industry has even taken advantage of the ease and
      scalability of cloud-based business models allowing
      customers to 'rent' their fully hosted botnet
      solutions for as little as $60 a day."
    * Botnet for sale business going strong
      <http://www.eweek.com/c/a/Security/BotnetBotnet-for-Sale-Business-Going-Strong-Security-Researchers-Say848696/>
      (eWeek/Brian Prince) "In the cyber-underground, botnet
      victims are a form of currency, Gunter Ollmann, vice
      president of research at Damballa, told eWEEK. A
      particular management tool may cost $500 to purchase
      but could be traded for 4,000 bot victims in the U.K.,
      for example. The hurdles to building a botnet are so
      low now 'any man and his dog can get started in this
      business,' he said."
    * The "Iranian Cyber Army" strikes back
      <http://blog.seculert.com/2010/10/iranian-cyber-army-strikes-back.html>
      (Seculert Research Lab) "There are numerous different
      exploit kits being sold in underground forums among
      cyber criminals. Competition in this crowded and
      lucrative market is driving authors to create exploit
      kits with sleek and sexy user interfaces, so the
      product will be more attractive to potential customers."
    * Japan has national botnet warriors
      <http://arstechnica.com/tech-policy/news/2010/10/japan-has-a-national-botnet-fighter-wheres-ours.ars>
      (Ars Technica/Matthew Lasar) "Cyber Clean does the
      usual good stuff, trying to raise public awareness
      about the dangers of bots. [...] But the Cyber Clean
      operation goes a massive step further than public
      education. It searches for bot-infected PCs, then
      engages in a series of 'attention rousing activities'
      to get the user to realize that her computer has been
      hijacked."

*/Japan Fact:/*

The .jp (Japan) Internet domain is one of the world's safest 
domains 
<http://www.readwriteweb.com/archives/the_worlds_most_dangerous_domains.php>, 
ranking only behind .edu and .travel for lack of threats 
from malware, browser exploits, spam, aggressive pop-ups, 
and suspicious affiliations.
------------------------------------------------------------
The */OPLIN 4cast/* is a weekly compilation of recent 
headlines, topics, and trends that could impact public 
libraries. You can subscribe to it in a variety of ways, 
such as:

    * *RSS feed.* You can receive the OPLIN 4cast via RSS
      feed by subscribing to the following URL:
      http://www.oplin.org/4cast/index.php/?feed=rss2.
    * *Live Bookmark.* If you're using the Firefox web
      browser, you can go to the 4cast website
      (http://www.oplin.org/4cast/) and click on the orange
      "radio wave" icon on the right side of the address
      bar. In Internet Explorer 7, click on the same icon to
      view or subscribe to the 4cast RSS feed.
    * *E-mail.* You can have the OPLIN 4cast delivered via
      e-mail (a'la OPLINlist and OPLINtech) by subscribing
      to the 4cast mailing list at
      http://mail.oplin.org/mailman/listinfo/OPLIN4cast.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.oplin.org/pipermail/oplin4cast/attachments/20101103/3eca8b65/attachment-0001.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: kubrickheader.jpg
Type: image/jpeg
Size: 38379 bytes
Desc: not available
Url : http://mail.oplin.org/pipermail/oplin4cast/attachments/20101103/3eca8b65/kubrickheader-0001.jpg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Robot18.gif
Type: image/gif
Size: 1834 bytes
Desc: not available
Url : http://mail.oplin.org/pipermail/oplin4cast/attachments/20101103/3eca8b65/Robot18-0001.gif

More information about the OPLIN4cast mailing list