advertisement

botnet underground economics

60 %
40 %
advertisement
Information about botnet underground economics
Entertainment

Published on December 4, 2007

Author: Jolene

Source: authorstream.com

advertisement

  Understanding Botnets: How Massive Internet Break-Ins Fuel an Underground Economy:    Understanding Botnets: How Massive Internet Break-Ins Fuel an Underground Economy Jason Franklin and Vern Paxson Abstract:  Abstract We study how the creation of massive networks of compromised machines fuel an underground economy. The underground market being studied is a central point for miscreant activity including identity theft, phishing, sale of compromised machines, and credit card fraud. Through extensive passive monitoring and analysis of this underground marketplace, we hope to establish connections between various facets of illegal online activities. Measurement Methodology:  Measurement Methodology Passive monitoring and archival of Internet Relay Chat (IRC) channels 50+ monitored servers Over 7 months of data Over 12 million individual messages from as many as 50k individuals Limitations and Complexities No private IRC messages Complex underground dialect (slang) Difficult to establish reputation S S S C C C M C IRC Botnet Definition:  Botnet Definition A botnet is a network of compromised machines (bots) remotely controlled by an attacker. Key U ncompromised Host Underground Market Breakdown:  Underground Market Breakdown Observed Relationships and Causality:  Observed Relationships and Causality Stolen Credit cards Market at a Glance:  Market at a Glance Number of Days Monitored Percentage of Monitored Messages Market at a Glance:  Market at a Glance Number of Days Monitored Percentage of Monitored Messages Vulnerability Alerts, Exploits, and Potential Bots:  Vulnerability Alerts, Exploits, and Potential Bots Vertical lines represent releases of major vulnerability alert. Percentage of Monitored Messages Number of Days Monitored Vulnerability Alerts, Exploits, and Potential Bots:  Vulnerability Alerts, Exploits, and Potential Bots Vertical lines represent releases of major vulnerability alert. Percentage of Monitored Messages Number of Days Monitored Complex Social Network:  Complex Social Network Future work includes leveraging social network analysis techniques to map connections between players. Conclusion:  Conclusion Preliminary results show that underground markets aggregate information which is otherwise difficult to observe. Monitoring underground markets may be useful as a predictor of future widespread malicious activities on the Internet. We may be able to use the market as an oracle. Future analysis of the complex relationships between market players is required. Acknowledgements:  Acknowledgements We would like to thank Rob Thomas of team Cymru for providing access to the IRC logs. We would also like to thank Stefan Savage, Robin Sommers, and Nick Weaver for their comments and suggestions. This research was performed while on appointment as a U.S. Department of Homeland Security (DHS) Fellow under the DHS Scholarship and Fellowship Program, a program administered by the Oak Ridge Institute for Science and education (ORISE) for DHS through an interagency agreement with the U.S Department of Energy (DOE). ORISE is managed by Oak Ridge Associated Universities under DOE contract number DE-AC05-00OR22750. All opinions expressed in this paper are the author's and do not necessarily reflect the policies and views of DHS, DOE, or ORISE. The research described here was performed at the Lawrence Berkeley National Laboratory and supported by the Director, Office of Science, Office of Workforce Development for Teachers and Scientists, of the U.S. Department of Energy under Contract No. DE-AC02-05CH11231.

Add a comment

Related presentations

Related pages

Botnets and the Underground Economy - CS Division Home ...

Motivation Botnets pose the greatest power to execute illegal activities on the internet – Spam, DDoS, phishing An underground cybercrime economy
Read more

Malware, Botnet e Undergroung Economy by Davide Gabrini on ...

Transcript of Malware, Botnet e Undergroung Economy. Smart TV e home theatre Vehicle infotainment Peer to peer Malware, Botnet & Underground Economy
Read more

Understanding Botnets: How Massive Internet-Scale Break ...

Understanding Botnets: How Massive Internet Break-Ins Fuel an Underground Economy Jason Franklin and Vern Paxson
Read more

Malware, Botnet e Undergroung Economy (2014) by Davide ...

Malware, Botnet e Undergroung Economy (2014) Una panoramica sull'evoluzione delle minacce digitali by Davide Gabrini on 28 May 2015 Tweet. Comments (0) ...
Read more

Worms, Botnets and The Underground Economy

Worms, Botnets and The Underground Economy CS 161 - Computer Security Profs. Vern Paxson & David Wagner TAs: John Bethencourt, Erika Chin, Matthew
Read more

Fighting botnets with economic uncertainty

Fighting botnets with economic uncertainty ... center of the botnet underground market, a botmaster uti-lizes bots for attacks with various revenue streams ...
Read more

Securelist | The economics of Botnets - Securelist

The economics of Botnets. By Yury Namestnikov on July 22, 2009. 8 ... Hundreds of new bank-accounts-for-sale advertisements appear on underground forums ...
Read more

The Russian underground economy has democratised ...

If you want to buy a botnet, it'll cost you somewhere in the region of $700 (£433). If you just want to hire someone else's for an hour, though ...
Read more

The Underground Economy of Spam: A Botmaster’s ...

The Underground Economy of Spam: A Botmaster’s Perspective of Coordinating Large-Scale Spam Campaigns Brett Stone-Gross x;?, Thorsten Holzz, Gianluca ...
Read more

ITU Botnet Mitigation Toolkit - ITU: Committed to ...

ITU Botnet Mitigation Toolkit Background Information ICT Applications and Cybersecurity Division Policies and Strategies Department ITU Telecommunication ...
Read more