Risk
1/11/2005
04:22 PM
Thomas Claburn
Thomas Claburn
Commentary
Connect Directly
LinkedIn
Twitter
Google+
RSS
E-Mail
50%
50%

Machine Wars

Cybercrime used to be personal. Today, it's professional and pre-programmed.

Cybercrime used to be personal. Today, it's professional and pre-programmed.Recall computer security expert Tsutomu Shimomura's effort to track hacker Kevin Mitnick in 1994. There was a personal rivalry fit for detective fiction.

But these days, as I discovered researching InformationWeek's upcoming security feature Machine Wars, hacking is automated.

There are many areas where expertise can be automated and made available through software. In medicine, we now have expert systems that automate aspects of the diagnostic process. So perhaps it's no surprise that hackers are releasing tools that automate attacks. But the advent of crime bots also owes something to emergence of organized gangs of cyber criminals. Experts indicate that such groups are increasingly funding the development of worms, viruses, and the like.

The arrest of members of a Russian cyber crime gang last July by the UK's National Hi-Tech Crime Unit and its counterparts in the Russian Federation represents an example of this trend. The gang is believed to have extorted hundreds of thousands of pounds from online bookmakers after crippling their servers with a denial of service attack to demonstrate the dangers of failing to pay protection money.

According to a spokesperson for the UK NHTCU, "The denial of service attacks were launched from compromised machines (ie: zombies) via a botnet."

Like John Henry in his storied race against a steam drill, IT admins are killing themselves trying to keep up.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-0192
Published: 2015-07-02
Unspecified vulnerability in IBM Java 8 before SR1, 7 R1 before SR2 FP11, 7 before SR9, 6 R1 before SR8 FP4, 6 before SR16 FP4, and 5.0 before SR16 FP10 allows remote attackers to gain privileges via unknown vectors related to the Java Virtual Machine.

CVE-2015-1914
Published: 2015-07-02
IBM Java 7 R1 before SR3, 7 before SR9, 6 R1 before SR8 FP4, 6 before SR16 FP4, and 5.0 before SR16 FP10 allows remote attackers to bypass "permission checks" and obtain sensitive information via vectors related to the Java Virtual Machine.

CVE-2015-1916
Published: 2015-07-02
Unspecified vulnerability in IBM Java 8 before SR1 allows remote attackers to cause a denial of service via unknown vectors related to SSL/TLS and the Secure Socket Extension provider.

CVE-2015-3157
Published: 2015-07-02
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

CVE-2015-3202
Published: 2015-07-02
fusermount in FUSE before 2.9.3-15 does not properly clear the environment before invoking (1) mount or (2) umount as root, which allows local users to write to arbitrary files via a crafted LIBMOUNT_MTAB environment variable that is used by mount's debugging feature.

Dark Reading Radio
Archived Dark Reading Radio
Marc Spitler, co-author of the Verizon DBIR will share some of the lesser-known but most intriguing tidbits from the massive report