DOCSLIB.ORG

Patriotic Hackers from China, Russia, and Elsewhere

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Patriotic Hackers from China, Russia, and Elsewhere Corporate Hacking and Technology-Driven Crime: Social Dynamics and Implications Thomas J. Holt Michigan State University, USA Bernadette H. Schell Laurentian University, Canada InformatIon scIence reference Hershey • New York Director of Editorial Content: Kristin Klinger Director of Book Publications: Julia Mosemann Acquisitions Editor: Lindsay Johnston Development Editor: Joel Gamon Production Editor: Jamie Snavely Cover Design: Lisa Tosheff Published in the United States of America by Information Science Reference (an imprint of IGI Global) 701 E. Chocolate Avenue Hershey PA 17033 Tel: 717-533-8845 Fax: 717-533-8661 E-mail: [email protected] Web site: http://www.igi-global.com Copyright © 2011 by IGI Global. All rights reserved. No part of this publication may be reproduced, stored or distributed in any form or by any means, electronic or mechanical, including photocopying, without written permission from the publisher. Product or company names used in this set are for identification purposes only. Inclusion of the names of the products or com- panies does not indicate a claim of ownership by IGI Global of the trademark or registered trademark. Library of Congress Cataloging-in-Publication Data Corporate hacking and technology-driven crime : social dynamics and implications / Thomas J. Holt and Bernadette H. Schell, editors. p. cm. Includes bibliographical references and index. Summary: "This book addresses various aspects of hacking and technology- driven crime, including the ability to understand computer-based threats, identify and examine attack dynamics, and find solutions"--Provided by publisher. ISBN 978-1-61692-805-6 (hbk.) -- ISBN 978-1-61692-807-0 (ebook) 1. Computer crimes. 2. Computer hackers. I. Holt, Thomas J., 1978- II. Schell, Bernadette H. (Bernadette Hlubik), 1952- HV6773.C674 2011 364.16'8--dc22 2010016447 British Cataloguing in Publication Data A Cataloguing in Publication record for this book is available from the British Library. All work contributed to this book is new, previously-unpublished material. The views expressed in this book are those of the authors, but not necessarily of the publisher. Section 4 Marco-System Issues Regarding Corporate and Government Hacking and Network Intrusions 170 Chapter 9 Cyber Conflict as an Emergent Social Phenomenon Dorothy E. Denning Naval Postgraduate School, USA ABSTRACT This chapter examines the emergence of social networks of non-state warriors launching cyber attacks for social and political reasons. It examines the origin and nature of these networks; their objectives, targets, tactics, and use of online forums; and their relationship, if any, to their governments. General concepts are illustrated with case studies drawn from operations by Strano Net, the Electronic Disturbance Theater, the Electrohippies, and other networks of cyber activists; electronic jihad as practiced by those affiliated with al-Qa’ida and the global jihadist movement associated with it; and operations bypatriotic hackers from China, Russia, and elsewhere. INTRODUCTION needed to launch attacks. Their targets are elec- tronic networks, computers, and data. Warfare is inherently social. Soldiers train and operate in units, fighting and dying for each other The Emergence of Cyber as much as for their countries. Cyber conflict is Conflict, or Hacking for Political also social, but whereas traditional warriors work and Social Objectives and socialize in physical settings, cyber warriors operate and relate primarily in virtual space. Although conflict appears throughout human his- They communicate electronically and meet in tory, its manifestation in cyberspace is a relatively online forums, where they coordinate operations recent phenomenon. After all, digital computers and distribute the software tools and knowledge did not appear until the 1940s, and computer net- works until the 1960s. Attacks against computers and the data they held emerged in the late 1950s DOI: 10.4018/978-1-61692-805-6.ch009 and early 1960s, but they were perpetrated more Copyright © 2011, IGI Global. Copying or distributing in print or electronic forms without written permission of IGI Global is prohibited. Cyber Conflict as an Emergent Social Phenomenon for money and revenge than as an instrument of The Purpose of This Chapter national and international conflict. Typical crimes included bank fraud, embezzlement, information This chapter examines the emergence of social theft, unauthorized use, and vandalism (Parker, networks of non-state warriors launching cyber 1976). Teenage hacking arrived on the scene in attacks for social and political reasons. These the 1970s, and then grew in the 1980s, as young networks support a variety of causes in such areas computer users pursued their desire to explore as human and animal rights, globalization, state networks, have fun, and earn bragging rights. By politics, and international affairs. This chapter the end of the decade, the single biggest attack examines the origin and nature of these networks; on the Internet was a computer worm launched their objectives, targets, tactics, and use of online by a college student simply as an experiment. forums. It also describes the relationship, if any, Within this mix of playful hacking and serious to their governments. computer crime, cyber conflict, or hacking for political and social objectives, emerged, taking root in the 1990s and then blossoming in the THE NATURE OF NON- 2000s. Now, it accounts for a substantial share of STATE NETWORKS all cyber attacks, as well as some of the highest profile attacks on the Internet, such as the ones Unlike states, non-state networks of cyber soldiers perpetrated by patriotic Russian hackers against typically operate without the constraints imposed Estonia in 2007 and Georgia in 2008. by rigid hierarchies of command and control, for- mal doctrine, or official rules and procedures. In- The Hacker Group Phenomenon stead, they operate in loosely-connected networks encouraging and facilitating independent action in From the outset, hackers and cyber criminals support of common objectives--what is sometimes have operated in groups. In his examination of characterized as “leaderless resistance.” early computer-related crime, Donn Parker found However, while the networks are decentralized, that about half of the cases involved collusion, they are not actually leaderless. A few individu- sometimes in groups of six or more (Parker, 1976, als, often already connected outside cyberspace p. 51). Youthful hackers met on hacker bulletin or from previous operations, effectively take boards and formed clubs, one of the earliest and charge, or at least get things started. They articu- most prestigious being the Legion of Doom (Den- late goals and strategy, plan and announce cyber ning, 1999, p. 49), while serious criminals formed attacks, encourage people to participate, and networks to traffic in cyber crime tools and booty, provide instructions and tools for participating. such as stolen credit cards. Today, there are perhaps They manage the online forums--websites, web tens or hundreds of thousands of social networks forums and groups, discussion boards, chat rooms/ engaging in cyber attacks. While many of these channels, email lists, and so forth--supporting networks were formed for fun or financial gain, network activities. They also develop or acquire others arose for the purpose of engaging in cyber the automated software tools used by the group. conflict. Individuals, often already connected Often, the tools themselves give the leaders some through hacker groups or other social networks, control over the conduct of cyber attacks (e.g., se- came together to hack for a cause. lection of targets and rate of attack), compensating for the lack of a hierarchical command structure over the network players. 171 Cyber Conflict as an Emergent Social Phenomenon The net effect is that non-state cyber war- and political activism, is the broadest area; it can riors are able to mobilize and conduct attacks involve small groups of local activists or large on relatively short notice, unconstrained by the groups crossing international boundaries and com- need to follow time-consuming protocols or wait ing together over the Internet. Targets are typically for an approval process to move through a chain government institutions, including both national of command. Further, the networks can grow to and international bodies, but they also include include thousands of participants, as resources businesses and other non-state groups. Electronic are not needed to pay, train, or relocate individual jihad refers to cyber attacks conducted in support of warriors. Assuming adequate bandwidth, an online the terrorist group al-Qa’ida and the global jihadist forum that supports a small cyber army can just movement associated with it. Targets include both as easily support a large one. government and non-government entities across Online forums play a vital social role in the the globe, but especially in the United States and formation, growth, and operation of cyber conflict other Western countries. Patriotic hacking covers networks. Participants use the forums to acquire state-on-state conflict, but the perpetrators of the information, discuss issues, and get to know each cyber attacks are citizens and expatriates rather other. The forums foster a sense of group identity than governments. Targets are both government and community, while rhetoric on the forums and non-government entities in the opposing state. stirs up emotions,
Load more

Recommended publications
  • July 2009 1663 Los Alamos Science and Technology Magazine July 2009 the Complicated Network of Transmission a Very Chilly –300°F, to Become Superconducting
    loslos alamos alamos science science and and technology technology magazine magazine JUJULYLY 20 20 09 09 Wired for the Future Cyber Wars Have SQUIDs, Will Travel 1663 A Trip to Nuclear North Korea About Our Name: during World War ii, all that the 1663outside world knew of los alamos and its top-secret table of contents laboratory was the mailing address—P. o. Box 1663, santa Fe, new mexico. that box number, still part of our address, symbolizes our historic role in the nation’s from terry wallace service. PrINcIPaL aSSocIatE DIrEctor For ScIENcE, tEchNoLogy, aND ENgINEErINg located on the high mesas of northern new mexico, los alamos national laboratory was founded in 1943 to build the first atomic bomb. it remains a premier scientific laboratory, dedicated to national security in its broadest the Scientist Envoy INSIDE FroNt coVEr sense. the laboratory is operated by los alamos national security, llc, for the department of energy’s national nuclear security administration. features About the Cover: artist’s conception of a hacker’s “trojan horse,” in cyberspace. los alamos fights an mosArchive unending battle against trojan horses, worms, and la other forms of malicious software but is spearheading LosA research to play offense rather than defense in the Wired for the Future 2 During the Manhattan Project, Enrico Fermi, Nobel Laureate and leader of SUPErcoNDUctINg WIrES MIght traNSForM ENErgy DIStrIBUtIoN ongoing cyber wars. F-Division, meets with San Ildefonso Pueblo’s Maria Martinez, famous worldwide for her extraordinary black pottery. from terry wallace cyber Wars The Scientist Envoy 6 thE UNENDINg BATTLE For coNtroL Since the middle of the His direct experience with both plutonium metallurgy nineteenth century and the and international diplomacy have allowed him to days of Mendeleev, Darwin, communicate with the North’s weapons scientists, Pasteur, and Maxwell, obtain accurate information about the country’s scientists have helped to plutonium capabilities, and report his findings to the have SQUIDs, Will travel 12 better society.
    [Show full text]
  • Creation and Resilience of Decentralized Brands: Bitcoin & The
    Creation and Resilience of Decentralized Brands: Bitcoin & the Blockchain Syeda Mariam Humayun A dissertation submitted to the Faculty of Graduate Studies in partial fulfillment of the requirements for the degree of Doctor of Philosophy Graduate Program in Administration Schulich School of Business York University Toronto, Ontario March 2019 © Syeda Mariam Humayun 2019 Abstract: This dissertation is based on a longitudinal ethnographic and netnographic study of the Bitcoin and broader Blockchain community. The data is drawn from 38 in-depth interviews and 200+ informal interviews, plus archival news media sources, netnography, and participant observation conducted in multiple cities: Toronto, Amsterdam, Berlin, Miami, New York, Prague, San Francisco, Cancun, Boston/Cambridge, and Tokyo. Participation at Bitcoin/Blockchain conferences included: Consensus Conference New York, North American Bitcoin Conference, Satoshi Roundtable Cancun, MIT Business of Blockchain, and Scaling Bitcoin Tokyo. The research fieldwork was conducted between 2014-2018. The dissertation is structured as three papers: - “Satoshi is Dead. Long Live Satoshi.” The Curious Case of Bitcoin: This paper focuses on the myth of anonymity and how by remaining anonymous, Satoshi Nakamoto, was able to leave his creation open to widespread adoption. - Tracing the United Nodes of Bitcoin: This paper examines the intersection of religiosity, technology, and money in the Bitcoin community. - Our Brand Is Crisis: Creation and Resilience of Decentralized Brands – Bitcoin & the Blockchain: Drawing on ecological resilience framework as a conceptual metaphor this paper maps how various stabilizing and destabilizing forces in the Bitcoin ecosystem helped in the evolution of a decentralized brand and promulgated more mainstreaming of the Bitcoin brand. ii Dedication: To my younger brother, Umer.
    [Show full text]
  • Ethical Hacking
    Ethical Hacking Alana Maurushat University of Ottawa Press ETHICAL HACKING ETHICAL HACKING Alana Maurushat University of Ottawa Press 2019 The University of Ottawa Press (UOP) is proud to be the oldest of the francophone university presses in Canada and the only bilingual university publisher in North America. Since 1936, UOP has been “enriching intellectual and cultural discourse” by producing peer-reviewed and award-winning books in the humanities and social sciences, in French or in English. Library and Archives Canada Cataloguing in Publication Title: Ethical hacking / Alana Maurushat. Names: Maurushat, Alana, author. Description: Includes bibliographical references. Identifiers: Canadiana (print) 20190087447 | Canadiana (ebook) 2019008748X | ISBN 9780776627915 (softcover) | ISBN 9780776627922 (PDF) | ISBN 9780776627939 (EPUB) | ISBN 9780776627946 (Kindle) Subjects: LCSH: Hacking—Moral and ethical aspects—Case studies. | LCGFT: Case studies. Classification: LCC HV6773 .M38 2019 | DDC 364.16/8—dc23 Legal Deposit: First Quarter 2019 Library and Archives Canada © Alana Maurushat, 2019, under Creative Commons License Attribution— NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0) https://creativecommons.org/licenses/by-nc-sa/4.0/ Printed and bound in Canada by Gauvin Press Copy editing Robbie McCaw Proofreading Robert Ferguson Typesetting CS Cover design Édiscript enr. and Elizabeth Schwaiger Cover image Fragmented Memory by Phillip David Stearns, n.d., Personal Data, Software, Jacquard Woven Cotton. Image © Phillip David Stearns, reproduced with kind permission from the artist. The University of Ottawa Press gratefully acknowledges the support extended to its publishing list by Canadian Heritage through the Canada Book Fund, by the Canada Council for the Arts, by the Ontario Arts Council, by the Federation for the Humanities and Social Sciences through the Awards to Scholarly Publications Program, and by the University of Ottawa.
    [Show full text]
  • Malware – Future Trends Dancho Danchev Dancho.Danchev at Hush.Com Ddanchev.Blogspot.Com
    Malware – future trends Dancho Danchev dancho.danchev AT hush.com ddanchev.blogspot.com 1. Intro 2. Scope 3. Author’s comments 4. The current state of the malware threat - Where the metrics are! - Use and abuse of malware - DDoS extortion - DDoS on demand/hire - Botnets and zombie hosts - Pay-Per-Click-Hijacking - Cryptoviral extortion, Ransomware - Platform for dissemination of other junk - Mass identity theft and financial abuse - Around the industry 5. Factors contributing to the rise and success of malware - Documentation and howto’s transformed into source code - Vulnerabilities, even patches, easily turned into exploits - Clear signs of consolidation on the malware scene - The media as a fueling factor for growth - Over 960M unique Internet users and their connectivity, or purchasing power - The demand for illegal services 6. Future trends - Mobile malware will be successfully monetized - Localization as a concept will attract the coders’ attention - Open Source Malware - Anonymous and illegal hosting of (copyrighted) data - The development of Ecosystem - Rise in encryption and packers - 0day malware on demand - Cryptoviral extortion / Ransomware will emerge - When the security solutions ends up the security problem itself - Intellectual property worms - Web vulnerabilities, and web worms – diversity and explicit velocity - Hijacking botnets and infected PCs - Interoperability will increase the diversity and reach of the malware scene 7. Conclusion 01. Intro Malware has truly evolved during the last couple of years. Its potential
    [Show full text]
  • 1. Introduction a Small Number of ‘Mass Market’ Software Infrastructures Now Support a Broad Range of Critical Systems
    Anti‐Social Networking: Crowdsourcing and the CyberDefence of National Critical Infrastructures Chris W. Johnson, School of Computing Science, University of Glasgow, Glasgow, Scotland, G12 8RZ. [email protected], http://www.dcs.gla.ac.uk/~johnson Abstract The last decade has seen a growing number of cyber‐attacks, for instance on Estonia, Belarus, Lithuania, Georgia, Pakistan and India. It has been difficult to determine whether or not these incidents were state‐sponsored. This paper identifies three different roles that social networking and social media have played in this ‘attribution problem’. Firstly, social networks have motivated individuals to participate in mass Denial of Service (DoS) attacks. They have disseminated information and provided access to resources, including botnets that were originally developed by cyber‐criminal groups. Secondly, we show how information about an individual’s social networks has supported targeted attacks, such as spear phishing, on opposition groups. Malware is, typically, disguised in a document that was intercepted from a colleague or friend. The recipient is more likely to open an attachment or link if it has been sent from a trusted source. Thirdly, we show how the development of Cloud infrastructures to support social networking applications has created disposable architectures for the Command and Control servers that coordinate malware attacks. The ubiquitous and distributed nature of these architectures makes it increasingly difficult to determine who owns and operates these systems. The closing sections of the paper identify a roadmap for the defensive measures that might be used to minimise the future threats from the ‘dark side’ of social networking1. Keywords: Cyber‐defence, National Critical Infrastructures, Software Security.
    [Show full text]
  • Non-State Actors in Cyberspace Operations Is Given in Section 6
    1 Johan Sigholm,Captain, Ph.D. student,Swedish National Defence College Abstract The growing importance of cyberspace to modern society, and its increasing use as an arena for dispute, is becoming a national security concern for governments and armed forces globally. The special characteristics of cyberspace, such as its asymmetric nature, the lack of attribution, the low cost of entry, the legal ambiguity, and its role as an efficient medium for protest, crime, espionage and military aggression, makes it an attractive domain for nation-states as well as non- state actors in cyber conflict. This paper studies the various non-state actors who coexist in cyberspace, examines their motives and incitements, and analyzes how and when their objectives coincide with those of nation-states. Literature suggests that many nations are currently pursuing cyberwarfare capabilities, oftentimes by leveraging criminal organizations and irregular forces. Employment of such non-state actors as hacktivists, patriot hackers, and cybermilitia in state-on-state cyberspace operations has also proved to be a usable model for conducting cyberattacks. The paper concludes that cyberspace is emerging as a new tool for state power that will likely reshape future warfare. However, due to the lack of concrete cyberwarfare experience, and the limited encounters of legitimate cyberattacks, it is hard to precisely assess future effects, risks and potentials. Keywords Non-state actors, cyber, cyberspace, cyberwar, cyberactions, cyberattack The world is becoming completely hooked on information and communications technology (ICT). Almost alarmingly so. Large parts of our daily lives are shaped DOI 10.1515/jms-2016-0184 2 3 by computers, smartphones, the Internet and scores of unseen ICT-dependent government and commercial web services.
    [Show full text]
  • Book and Is Not Responsible for the Web: Content of the External Sources, Including External Websites Referenced in This Publication
    2020 12th International Conference on Cyber Conflict 20/20 Vision: The Next Decade T. Jančárková, L. Lindström, M. Signoretti, I. Tolga, G. Visky (Eds.) 2020 12TH INTERNATIONAL CONFERENCE ON CYBER CONFLicT 20/20 VISION: THE NEXT DECADE Copyright © 2020 by NATO CCDCOE Publications. All rights reserved. IEEE Catalog Number: CFP2026N-PRT ISBN (print): 978-9949-9904-6-7 ISBN (pdf): 978-9949-9904-7-4 COPYRIGHT AND REPRINT PERMissiONS No part of this publication may be reprinted, reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording or otherwise, without the prior written permission of the NATO Cooperative Cyber Defence Centre of Excellence ([email protected]). This restriction does not apply to making digital or hard copies of this publication for internal use within NATO, or for personal or educational use when for non-profit or non-commercial purposes, providing that copies bear this notice and a full citation on the first page as follows: [Article author(s)], [full article title] 2020 12th International Conference on Cyber Conflict 20/20 Vision: The Next Decade T. Jančárková, L. Lindström, M. Signoretti, I. Tolga, G. Visky (Eds.) 2020 © NATO CCDCOE Publications NATO CCDCOE Publications LEGAL NOTICE: This publication contains the opinions of the respective authors only. They do not Filtri tee 12, 10132 Tallinn, Estonia necessarily reflect the policy or the opinion of NATO Phone: +372 717 6800 CCDCOE, NATO, or any agency or any government. NATO CCDCOE may not be held responsible for Fax: +372 717 6308 any loss or harm arising from the use of information E-mail: [email protected] contained in this book and is not responsible for the Web: www.ccdcoe.org content of the external sources, including external websites referenced in this publication.
    [Show full text]
  • Hacking Nation-State Relationships: Exploiting the Vulnerability of the Liberal International Order
    Fordham University DigitalResearch@Fordham Senior Theses International Studies Spring 5-16-2020 Hacking Nation-State Relationships: Exploiting the Vulnerability of the Liberal International Order Ray Marie Tischio Follow this and additional works at: https://fordham.bepress.com/international_senior Part of the International and Area Studies Commons Hacking Nation-State Relationships: Exploiting the Vulnerability of the Liberal International Order Ray Marie Tischio [email protected] International Studies: Global Affairs Track Fordham University Class of 2020 Thesis Advisor: Christopher Toulouse [email protected] Seminar Advisor: Dotan Leshem [email protected] ABSTRACT This thesis explores the implications of nation-state cyberwarfare and cyber conflict in the context of geopolitics and international studies. The emergence of nation-state cyber conflict has increased in frequency and severity in the last decade. In order to investigate what renders cyberwarfare a new and unique challenge to specific geopolitical climates and international systems at large, research on state-level cyber conflict within bilateral relationships—all of which cyber activity is significantly prevalent—is presented in the following three case studies: US- China, US-Iran, and US-Russia. Findings of these three case studies are used in subsequent analysis to articulate the specific ways in which state cyber conflict differs from conventional state kinetic warfare. Finally, after characterizing cyber conflict and the new challenges it presents to geopolitics, these defining qualities are situated into the current debate surrounding the deterioration of the liberal international order. I conclude that nation-state cyberwarfare exploits the postwar interconnected transparency of liberalism, and fundamentally challenges the continuity of US hegemony and the liberal order.
    [Show full text]
  • Computer Security 37 8.1 Vulnerabilities
    Contents 1 Antivirus software 1 1.1 History ................................................ 1 1.1.1 1949-1980 period (pre-antivirus days) ............................ 1 1.1.2 1980-1990 period (early days) ................................ 2 1.1.3 1990-2000 period (emergence of the antivirus industry) ................... 2 1.1.4 2000-2005 period ...................................... 3 1.1.5 2005 to present ........................................ 3 1.2 Identification methods ........................................ 4 1.2.1 Signature-based detection .................................. 4 1.2.2 Heuristics ........................................... 4 1.2.3 Rootkit detection ....................................... 5 1.2.4 Real-time protection ..................................... 5 1.3 Issues of concern ........................................... 5 1.3.1 Unexpected renewal costs ................................... 5 1.3.2 Rogue security applications .................................. 5 1.3.3 Problems caused by false positives .............................. 5 1.3.4 System and interoperability related issues ........................... 6 1.3.5 Effectiveness ......................................... 6 1.3.6 New viruses .......................................... 6 1.3.7 Rootkits ............................................ 6 1.3.8 Damaged files ......................................... 6 1.3.9 Firmware issues ........................................ 7 1.4 Performance and other drawbacks .................................. 7 1.5 Alternative solutions
    [Show full text]
  • Cyber Conflict As an Emergent Social Phenomenon
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by Calhoun, Institutional Archive of the Naval Postgraduate School Calhoun: The NPS Institutional Archive Faculty and Researcher Publications Faculty and Researcher Publications 2011 Cyber Conflict as an Emergent Social Phenomenon Denning, Dorothy E. þÿDenning, D. E., Cyber Conflict as an Emergent Social Phenomenon, Corporate Hacking and Technology-Driven Crime: Social Dynamics and Implications (T. Hold and B. Schell eds.), IGI Global, 2011. (.pdf) http://hdl.handle.net/10945/37158 Corporate Hacking and Technology-Driven Crime: Social Dynamics and Implications Thomas J. Holt Michigan State University, USA Bernadette H. Schell Laurentian University, Canada InformatIon scIence reference Hershey • New York Director of Editorial Content: Kristin Klinger Director of Book Publications: Julia Mosemann Acquisitions Editor: Lindsay Johnston Development Editor: Joel Gamon Production Editor: Jamie Snavely Cover Design: Lisa Tosheff Published in the United States of America by Information Science Reference (an imprint of IGI Global) 701 E. Chocolate Avenue Hershey PA 17033 Tel: 717-533-8845 Fax: 717-533-8661 E-mail: [email protected] Web site: http://www.igi-global.com Copyright © 2011 by IGI Global. All rights reserved. No part of this publication may be reproduced, stored or distributed in any form or by any means, electronic or mechanical, including photocopying, without written permission from the publisher. Product or company names used in this set are for identification purposes only. Inclusion of the names of the products or com- panies does not indicate a claim of ownership by IGI Global of the trademark or registered trademark.
    [Show full text]
  • VB, February 2009, P.15
    FEBRUARY 2009 Fighting malware and spam CONTENTS IN THIS ISSUE 2 COMMENT RUNNING MACHINE To run or not to run? That’s the question ‘Do media players, Sat Navs, SD cards or external hard drives make legitimate use of AutoRun?’ asks 3 NEWS Roel Schouwenberg. Dismissed employee pleads not guilty to page 2 planting malware CHAOS CENTRAL Google confesses to human error Upon leaving the 25th Chaos Communication 3 VIRUS PREVALENCE TABLE Congress, Morton Swimmer concluded that 2009 is going to be a very interesting year – but not in 4 TECHNICAL FEATURE a good way. He provides a full round up of the Anti-unpacker tricks – part three research presented at the event. page 11 9 CALL FOR PAPERS VB100: RED HAT LINUX Calling all speakers: VB2009 Geneva This month sees the VB100’s annual visit to the Linux platform, as well as 10 OPINION the introduction of a brand new set of Feb 2009 It’s time for a change tests that will provide deeper insight into products’ ability to keep up with 11 CONFERENCE REPORT the fl ood of new malware as well as CCC 25C3 their proactive detection capabilities. John Hawes has the details. 15 COMPARATIVE REVIEW – PROLOGUE page 17 VB RAP testing 17 COMPARATIVE REVIEW Red Hat Enterprise Linux This month: anti-spam news and events, and Martijn 27 END NOTES & NEWS Grooten answers some of the common queries raised by vendors about the proposed test set-up for VB’s upcoming anti-spam comparative testing. ISSN 1749-7027 COMMENT ‘Do media players, only had to be plugged in for the malware to be run.
    [Show full text]
  • COMPUTER ARCHITECTURE and SECURITY Information Security Series
    COMPUTER ARCHITECTURE AND SECURITY Information Security Series The Wiley-HEP Information Security Series systematically introduces the fundamentals of information security design and application. The goals of the Series are: to provide fundamental and emerging theories and techniques to stimulate more research in cryptol- ogy, algorithms, protocols, and architectures; to inspire professionals to understand the issues behind important security problems and the ideas behind the solutions; to give references and suggestions for additional reading and further study. The Series is a joint project between Wiley and Higher Education Press (HEP) of China. Publications consist of advanced textbooks for graduate students as well as researcher and practitioner references covering the key areas, including but not limited to: – Modern Cryptography – Cryptographic Protocols and Network Security Protocols – Computer Architecture and Security – Database Security – Multimedia Security – Computer Forensics – Intrusion Detection Lead Editors Songyuan Yan London, UK Moti Yung Columbia University, USA John Rief Duke University, USA Editorial Board Liz Bacon University of Greenwich, UK Kefei Chen Shanghai Jiaotong University, China Matthew Franklin University of California, USA Dieter Gollmann Hamburg University of Technology, Germany Yongfei Han Beijing University of Technology, China ONETS Wireless & Internet Security Tech. Co., Ltd. Singapore Kwangjo Kim KAIST-ICC, Korea David Naccache Ecole Normale Superieure, France Dingyi Pei Guangzhou University,
    [Show full text]