Cybercrime

Cybercrime / Most Viewed

VeriSign Expands DNS Capacity From 400 Billion to Over 4 trillion Queries Per Day

Since 2000, the volume of Internet traffic on VeriSign's global infrastructure has increased from an average of 1 billion domain name system queries per day to a peak of more than 50 billion DNS queries per day under normal traffic conditions, reports VeriSign in a press release today. Under Project Titan, VeriSign reports it will increase its daily DNS query capacity from 400 billion queries a day to over 4 trillion queries a day and will increase the aggregate network bandwidth of its primary resolution centers around the world from more than 20 gigabits per second (Gbps) to greater than 200 Gbps per second. VeriSign also plans to expand its deployment of Regional Internet Resolution Sites to more than 100 locations across the globe by 2010. Plans also include deploying new proprietary security upgrades and monitoring tools to identify, track and isolate malicious Internet traffic generated from cyber attacks. more»

Latvian Hosting Company Shut Down, Linked to World's Biggest Cybercrime Botnet

Swedish telco Telia Sonera has shut down the internet connections of Latvian company Real Host after it was linked with the world's biggest cybercrime botnet. Real Host has been compared to McColo and Atrivo, two hosting companies shut down by authorities because of links to large-scale cybercriminal activities. more»

New Policy in China Favors Cybersquatters

New regulations will make it more difficult for companies to protect their domain names from cybersquatters in China.

Under the new rules, foreign and local firms will need to prove malicious intent and act quickly to have any hope of retrieving stolen domain names, according to a regulatory official interviewed by Chinese news site Sina. The new rules appear to give a green light to cybersquatters who buy up domain names which are similar to brand names in the hope of selling later for a profit. more»

Cybersecurity Rapidly Growing Part of U.S. Budget, Lockheed and Boeing Heavily Involved

Lockheed Martin Corp. and Boeing Co., the world's biggest defense companies, are deploying forces and resources to a new battlefield: cyberspace. The military contractors, eager to capture a share of a market that may reach $11 billion in 2013, have formed new business units to tap increased spending to protect U.S. government computers from attack. more»

China Not Only the World's Factory, but Also the World's Malware Factory

With China's economy cooling down, some of the country's IT professionals are turning to cybercrime, according to a Beijing-based security expert. Speaking at the CanSecWest security conference last week, Wei Zhao, CEO of Knownsec, a Beijing security company, said that while many Chinese workers may be feeling hard times, business is still booming in the country's cybercrime industry. "As the stock market dropped like a stone, a lot of IT professionals lost lots of money on the stock market," he said. "So sometimes they sell 0days," he said, referring to previously unknown software bugs. more»

U.S. Government Plans to Boost Cybersecurity ID Ecosystem

Declan McCullagh reporting in CNET: "President Obama is planning to hand the U.S. Commerce Department authority over a forthcoming cybersecurity effort to create an Internet ID for Americans, a White House official said here today. It's 'the absolute perfect spot in the U.S. government' to centralize efforts toward creating an 'identity ecosystem' for the Internet, White House Cybersecurity Coordinator Howard Schmidt said." more»

Apparently Legitimate Estonian ISP Operating as Large Cybercrime Hub Since 2005

An apparently legitimate ISP in Tartu, Estonian is reported to have been serving as the operational headquarters of a large cybercrime network since 2005 according to TrendWatch, the security research arm of TrendMicro. "An Estonian company is actively administering a huge number of servers in numerous datacenters, which together form a network to commit cybercrime. It appears that the company from Tartu, Estonia controls everything from trying to lure Internet users to installing DNS changer Trojans by promising them special video content, and finally to exploiting victims' machines for fraud with the help of ads and fake virus infection warnings..." more»

Interoperability Testing Event for DMARC Email Anti-Spoofing Specification

At the end of January, the DMARC (Domain-based Message Authentication, Reporting & Conformance) specification was publicly announced and resulted in widespread media coverage, blog posts and discussion. Since that time various individuals and organizations have been working on writing code for DMARC validators and report parsers. The dmarc-discuss list has been fairly active as various questions and issues have been raised and clarified. Now it is time to see how well the various implementations play together in live testing. more»

Criminals Regain Control of Srizbi Botnet, Spam Volume Rising

Experts are that the spam volumes may spike significantly over the next few days now that one of the world's largest networks of compromised computers used for blasting out junk email has been brought back to life, reports Brian Krebs of the Washington Post. "The Srizbi botnet, a collection of more than half a million hacked PCs that were responsible for relaying approximately 40 percent of all spam sent worldwide, was knocked offline two weeks ago due to pressure from the computer security community." more»

Website of Georgian President Under Attack, Political Motivation Suspected

For over 24 hours the website of President Mikhail Saakashvili of Georgia, a former Soviet republic, has been down as a result of a distributed denial of service (DDoS) attack. This attack appears to have a political motivation, says Jose Nazario of Arbor Neworks. "Tensions between Russia and Georgia appear to be running high lately." According to The Shadowserver Foundation, a security watchdog group, the site (www.president.gov.ge) began coming under attack very early Saturday morning (Georgian time). more»

Evidence that Georgia Cyberattacks Were "Populist" in Nature

The attacks against websites in Georgia are most likely populist in nature rather than state sponsored says Gary Warner, director of computer forensics research at UAB. In a blog post today, Warner has provided some evidence regarding his speculations including scripts from Russian language websites. He writes: "This script was copied from one of more than forty Russian language sites where I found copies of an 'attack script' that people were being encouraged to run on their own computers..." more»

EC3, the European Cybercrime Centre, Opened - Challenges All Around

On Friday 11 January 2013 the European Cybercrime Centre, EC3, officially opened its doors at Europol in The Hague. If something shone through from the speeches of the panel participants, it is that there are tight budget restraints and a strong wish to cooperate with the U.S., the Interpol centre in Singapore and Russia. Let me share my thoughts on expectations. more»

UK's Utility Companies and Large Financial Firms Facing Major Cyber Espionage Attacks

Industrial espionage probes are being waged on companies that provide UK's national infrastructure and on similar organizations across Europe, security experts have warned. Mark Oram, head of information security knowledge department at the Centre for the Protection of National Infrastructure (CPNI), said the instances of political, economic and technical spying were more common than cyber-terrorism attacks. "We see frequent attacks on organizations for the purpose of intellectual property theft that we would not obviously classify as an attack on infrastructure," he said. more»

Experts See No Spam Declines After Shutdown of Largest Spam Operation

Last week's bust of the largest spam operation in the world has had no measurable impact on global spam volumes, according to reports. The spam gang, known by authorities and security experts as HerbalKing, was reported to have been responsible for one-third of all spam. One of the ringleaders, New Zealander Lance Atkinson, 26, who lives in Pelican Waters in Queensland, has had his US assets frozen by a U.S. district court at the request of the U.S. Federal Trade Commission, which also succeeded in having the spam network shut down via an injunction. more»

Newly Launched Cyber Secure Institute Says Constant Hack and Patch Not the Answer

The Cyber Secure Institute has recently announced its launch with the mission to raise awareness and pressure on addressing issues related to cyber threats faced by the U.S., companies, and individuals. The Institute is unique in that it is not a trade association or industry group. Rob Housman, the Institute's Executive Director, said "We formed the Cyber Secure Institute because this is a critical time for cybersecurity. ... However, we can't address this threat through cybersecurity as we now know it -- endless after-the-fact struggles to close gaps exposed in inherently insecure technologies. If we continue this constant cycle of hack and patch we will never be secure." more»