Home / Industry

The Botnet-Counterfeit Drugs Connection

Don't miss a thing – sign up for CircleID Weekly Wrap newsletter delivered to your inbox once a week.

Spam levels have declined dramatically since the March 16 takedown of Rustock, the world's largest botnet, but how long will this victory last? Rustock was responsible for sending almost half of all global spam and up to 44 billion spam emails per day. The spam was mainly emails that linked to websites offering counterfeit pharmaceutical drugs. Since the Rustock takedown, Viagra and Cialis spam emails have declined 75 percent, and security vendors have noted that Rustock has not become active again. The takedown is certainly a positive development, but pharmaceutical brand owners have good reason to remain cautious.

The key reason for caution is that the economics of the counterfeit drug industry suggest a continuation of pharmaceutical spam. One security researcher involved in the Rustock takedown observed that the money the Rustock botnet operators were making from sending pharmaceutical spam "was off the chart." According to an Interpol official, criminals spending $1,000 to make counterfeit medicines can earn as much as $450,000. There is a lot of money flowing between the counterfeit drugs industry and the botnet industry.

This big money means there will likely be replacement botnets or alternative online marketing methods to drive traffic to fake pharmaceutical sites. Cybercriminals may develop new botnets via increased malware infections. Or they may find new ways to drive traffic to fake pharmaceuticals websites. Current botnet operators could also form alliances to take up some of the slack in email distribution after Rustock. The point is there's just too much money at stake for the Rustock takedown to be the last word in pharmaceutical spam.

Post-Rustock, pharmaceutical brand owners should remain vigilant and monitor their brands, especially across websites, business-to-business exchanges, and search engines. An effective online brand protection strategy must address distribution channels as well as promotional touchpoints. Such an approach is the best way to protect customers from being diverted to places on the web selling fake, potentially harmful pharmaceutical drugs.

MarkMonitor

About MarkMonitor – MarkMonitor®, the world leader in enterprise brand protection uses a SaaS delivery model to provide advanced technology and expertise that protects the revenues and reputations of the world's leading brands. Learn More

Related topics: Cybercrime, Cybersecurity, Malware, Spam

 
   

Related Blogs

Related News

Explore Topics

Dig Deeper

Afilias Mobile & Web Services

Mobile Internet

Sponsored by Afilias Mobile & Web Services
Afilias

DNS Security

Sponsored by Afilias
Verisign

Cybersecurity

Sponsored by Verisign

Promoted Posts

Now Is the Time for .eco

.eco launches globally at 16:00 UTC on April 25, 2017, when domains will be available on a first-come, first-serve basis. .eco is for businesses, non-profits and people committed to positive change for the planet. See list of registrars offering .eco more»

Industry Updates – Sponsored Posts

Verisign Named to the Online Trust Alliance's 2017 Audit and Honor Roll

Attacks Decrease by 23 Precent in 1st Quarter While Peak Attack Sizes Increase: DDoS Trends Report

Leading Internet Associations Strengthen Cooperation

Verisign Releases Q4 2016 DDoS Trends Report: 167% Increase in Average Peak Attack from 2015 to 2016

Verisign Q3 2016 DDoS Trends Report: User Datagram Protocol (UDP) Flood Attacks Continue to Dominate

2016 U.S. Election: An Internet Forecast

Government Guidance for Email Authentication Has Arrived in USA and UK

ValiMail Raises $12M for Its Email Authentication Service

Don't Gamble With Your DNS

Defending Against Layer 7 DDoS Attacks

Understanding the Risks of the Dark Web

New TLD? Make Sure It's Secure

Verisign Releases Q2 2016 DDoS Trends Report - Layer 7 DDoS Attacks a Growing Trend

How Savvy DDoS Attackers Are Using DNSSEC Against Us

Facilitating a Trusted Web Space for Financial Service Professionals

MarkMonitor Partners with CYREN to Deepen Visibility into Global Phishing Attacks

Verisign Named to the Online Trust Alliance's 2016 Honor Roll

Verisign Q1 2016 DDoS Trends: Attack Activity Increases 111 Percent Year Over Year

Is Your TLD Threat Mitigation Strategy up to Scratch?

i2Coalition to Host First Ever Smarter Internet Forum