funsec mailing list archives

Re: The Criminal Underground: A Walk on the Dark Side

From: "Paul Ferguson" <fergdawg () netzero net>
Date: Sat, 1 Sep 2007 07:42:20 GMT

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

By the way, there is nothing really fun about this -- these guys
ARE the worst of the worst.

The extent of there work is extraordinarily huge -- a storm network
of millions of compromised machines, rock phish, massive website
compromises, clever & sophisticated software development to separate
you form your money.

It's the worst that I have personally ever seen -- and it will
probbaly get worse before it gets better.

- - ferg



- -- "Paul Ferguson" <fergdawg () netzero net> wrote:


Via The Economist.com.

[snip]

According to VeriSign, one of the worlds largest internet security
companies, RBN, an internet company based in Russias second city, St
Petersburg, is the baddest of the bad. In a report seen by The
Economist, VeriSigns investigators unpick an extraordinary story of
blatant cybercrime that implies high-level political backing.

In one sense, RBN (Russian Business Network) does not exist. It has no
legal identity; it is not registered as a company; its senior figures are
anonymous, known only by their nicknames. Its web sites are registered at
anonymous addresses with dummy e-mails. It does not advertise for
customers. Those who want to use its services contact it via internet
messaging services and pay with anonymous electronic cash.

But the menace it poses certainly exists. RBN is a for-hire service
catering to large-scale criminal operations, says the report. It hosts
cybercriminals, ranging from spammers to phishers, bot-herders and all
manner of other fraudsters and wrongdoers from the venal to the vicious.
Just one big scam, called Rock Phish (where gullible internet users were
tricked into entering personal financial information such as bank account
details) made $150m last year, VeriSign estimates.

[snip]

More:
http://www.economist.com/displaystory.cfm?subjectid=7933606&story_id=972376
8

- - ferg

[snip]

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)

wj8DBQFG2RfUq1pz9mNUZTMRAtthAJsF1Z4NRQJMu+Nv52UjJihPIzh6HgCgiohC
1J36dKANeVrjR/e50We5bMI=
=p20f
-----END PGP SIGNATURE-----


--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg(at)netzero.net
 ferg's tech blog: http://fergdawg.blogspot.com/


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

The Criminal Underground: A Walk on the Dark Side Paul Ferguson (Sep 01)
- <Possible follow-ups>
- Re: The Criminal Underground: A Walk on the Dark Side Paul Ferguson (Sep 01)
  - Re: The Criminal Underground: A Walk on the Dark Side Dude VanWinkle (Sep 04)
    - Re: The Criminal Underground: A Walk on the Dark Side Valdis . Kletnieks (Sep 04)
    - Re: The Criminal Underground: A Walk on the Dark Side Dude VanWinkle (Sep 05)
    - Re: The Criminal Underground: A Walk on the Dark Side Valdis . Kletnieks (Sep 05)
    - High Concept Comedy: Security is Economic! Bruce Ediger (Sep 05)
    - Re: The Criminal Underground: A Walk on the Dark Side Dude VanWinkle (Sep 05)
    - Re: The Criminal Underground: A Walk on the Dark Side Valdis . Kletnieks (Sep 05)
    - Re: The Criminal Underground: A Walk on the Dark Side coderman (Sep 05)
    - Re: The Criminal Underground: A Walk on the Dark Side Dude VanWinkle (Sep 05)
    - Re: The Criminal Underground: A Walk on the Dark Side coderman (Sep 05)

(Thread continues...)