Back to the articlefor those of us #
Posted Tuesday 29th July 2008 15:58 GMT
who are tech savvy, is now the time to become a crim??
Cybercrooks get faster, further and sneakier
X-Force? #
Posted Tuesday 29th July 2008 19:50 GMT
Only an American company could have come up with that.
no firefox plugin exploits? #
Posted Tuesday 29th July 2008 19:50 GMT
The report points to browser plugins as the main source for vulnerabilities,
To my surprise they report NO vulerabilities for firefox XPI plugins (against 73 high priority ActiveX plugin vulnerabilities for IE).
Anyone got an idea what the reason might be?
@for those of us #
Posted Tuesday 29th July 2008 19:50 GMT
These 'crims' are highly structured organisations, each member has a specialised role, and does not go outside his/her remit. For instance the people you'd contact to rent/buy zombies, are just "salesmen", they had nothing to do with spreading of the malware. In the same respect the programmers/exploit writers will have nothing to do with the sales process, and in most cases will have no involvement after infection, as consolidation would be another, distinct job.
Make no mistake, these are highly organised, well funded and well connected people we're talking about.
These organisations bear more resemblance to small multinational corporations than to the social networks of misunderstood teenagers from the old school of hacking. The vast majority of the malware/fraud groups are based out of Russia and China, but with people the world over working for them, they are truely international.
So, the simple answer is no. Unless you have prior dealings with these people (and have something to offer), you will have no luck going into direct competition. They are now, in every sense of the word, professionals, and they WILL do their job better then you.
Text-based spam #
Posted Tuesday 29th July 2008 19:50 GMT
The new stuff is actually harder to block with a simple filter - I already reject most stuff containing HTML, which takes out the image spam and usually the attachments because they're usually accompanied by a bit of HTML to encourage automatic display. A few words and a URL are much harder to trap, apart from the fact that many of the URLs are usually for domains less than a month old and are so amenable to a whois check on the age (except that whois servers get upset if you hit them too often - perhaps a wake-up call to registrars to police spam domains a bit more actively).
@Catweezle #
Posted Wednesday 30th July 2008 10:25 GMT
>Anyone got an idea what the reason might be?
Simple, Firefox has such a small user base that it's not worth bothering with.
Cyberballs #
Posted Wednesday 30th July 2008 11:47 GMT
How I would love to find whoever originated all these cheesy "CYBER-" words and shake them till their teeth fall out. It may have been cool in the 1970s, but so were kipper ties and PDP-11s. Bah, humbug.
no firefox plugin vulnerabilities #
Posted Friday 1st August 2008 14:16 GMT
Well there are 8 firefox browser vulnerabilities agains 6 for IE in the report, so that can't be the reason.
> Simple, Firefox has such a small user base that it's not worth bothering with.
>>Anyone got an idea what the reason might be?
Sign up, sign up for The Register's weekly IT security newsletter - click here
Popular Whitepapers
- Expert Roundtable: The Register Agile Data Center Summit
On-Demand Audio - Dell PowerEdge R710 solution with VMware ESX vs. Dell PowerEdge 2850 solution
Initial investment payback analysis summary report - New storage architectures make SSDs more cost-effective
High-performance, cost-efficient storage infrastructures - Automating the Acquisition Process with Enterprise Level CRM
Sales Force Automation buyer’s guide - Checklist: Midmarket ERP Solutions
Control your rising business costs - Enterprise PBX buyer's guide
Access to expert research on all aspects of the IP PBX market
