Dubai: Want to be a cybercriminal? While there once was a time when it would have required the ability to write computer code, these days all it takes is an internet connection, the ability to use Google, and about $250 (Dh917.50).
For your money, you get the software and instruction on how to use it. It will even scan you system to make sure no one else is trying to attack you. Don't expect to be able to call a service centre if you have trouble, but cybercriminals will customise your software to help make your attacks, according to Nick Black, the regional technical manager for TrendMicro, one of the world largest internet security firms.
"These [cybercriminals] are able to customise things for a specific customer depending on who they want to attack, what exploit they want to use, and what kind of browser they're targeting... so it's becoming very advanced," Black said in a recent interview with Gulf News.
The ease with which cybercriminal today can access malicious code that can be used to steal bank account details and other sensitive data is being linked to a shocking rise in malware, a term used to describe everything from a computer virus to a network of infected computers that can be used to spearhead online attacks on banks.
Bulent Teksoz, Symantec's Middle East security analyst, told Gulf News that 2008 was the year the cyber-crime industry matured.
"There was more malware published in 2008 and 2009 than in the previous 17 years combined," he said.
Symantec is the maker of Norton virus protection programs.
Black thinks that more and more people are getting involved in cyber-crime too, mainly because of the amount of money that can be stolen. While there are many estimates on how much they steal each year, Black simply says that the cyber-crime industry makes more money than illegal drug traffickers.
"You get someone with semi-level scripting skills, and the right people and right financings, and you get people who realise they can make a lot of money out of this," he said, adding that the recent economic downturn and high unemployment are making cyber-crime more inviting to some people.
Bad reputation
Black expects the rise in cyber-criminals to continue, although he says the majority of them, about 90 per cent, are believed to be involved in organised crime. Exactly who and where the criminals are is hard to gauge, although most experts point to China and Russia, but a new country is also being to get a bad reputation: Turkey. According to Black, Turkey currently accounts for about 60 per cent of global spam.
Spam isn't just random junk email anymore, either, Black says.
"Spam is a vehicle to deliver a targeted attack or set up a botnet," he said. "Spam is more the irritation factor now, but people need to be aware that there could be malware attacks in that spam." A botnet is a network of infected computers that can be used by a hacker to carry out cyber-attacks.
Black attributes the problems in Turkey to the competitive market there. The easiest way to shut down spam is to have the local internet service providers (ISP) block the spammers at the source. The problem is that to do so, ISPs usually have to block a "subnet" of computers, which can end up cutting off about 255 customers, many of which have nothing to do with the spam being generated. Turkey's market is so competitive that some ISPs ignore the program rather than alienate customers.
"There is a certain amount of reluctance, to be honest, on their [ISP's] part to go to their customers and block there [sub-net], but we are turning this around."
While the focus of these attacks can be anyone, the banking industry in particular is trying to combat the problem, since banking regulations require banks to cover customer's losses.
Chris Johnson, a vice-president for RSA, the cyber security division of software giant EMC, told Gulf News that the global fraud figure for cyber-crime is around $5 billion, but Johnson admits that figure is only an estimate because many banks refuse to disclose their losses. He also estimates that there are about 20,000 active cyber-criminals.
According to Symantec's Black, even banks here in the UAE have been targeted.
"Banks in general have avoided the bad publicity around being hacked," he said. "This is clearly a concern for them."
Increased threats
However, Johnson warns that governments are also facing increased threats from cyber-criminals as more and more governments roll out e-services, especially as a way to cut costs following the global credit crunch. Criminals have been targeting the financial transactions between the governments and banks, such as income tax rebates. Since the money transactions don't originate with banks, Johnson said the governments are now faced with the problem of whether or not they should carry the burden for the stolen money or even admit they made a mistake.
"Just as banks were highly averse to announcing that they were losing billions of dollars, governments are against admitting they were exposed," he said.
Ironically, online retailers are less often as large a risk as banks and governments.
"Retailers have really thought about security since day one," he said.
Current cyber threats
- ZeuS: According to TrendMicro, ZeuS is a crime-ware kit designed to steal user's online banking login credentials and is the handiwork of Eastern European organized criminals. Malware created with ZeuS is especially dangerous because it has the ability to infect a web browser, such as Internet Explorer. The browser then injects additional "form fields" into a legitimate web session, which is called a "man-in-the-browser attack". These "form fields" look like legitimate requests from the user's bank for additional information, such as account details. Any information entered into these boxes can be sent directly to a hacker. The best way to protect yourself against the attack is to get the latest security updates for the browser, and well as having an current anti-virus program.
- The F1 attack: Microsoft is investigating a recently discovered flaw that lets hackers exploit a flaw in the Internet Explorer web browser. According to the Microsoft Security Response Center (MSRC), websites infected with malicious code have been using popups that ask users running Windows XP to press the F1 key. Pressing the key allows the hackers to run malicious code that could compromise the user's computers
- The "Like" Attack: This Facebook application looks just like the official Facebook "Likes" function. The spam notification it sends out are designed to resemble the real Facebook "Like" feature. Anyone who attempts to install the apps will receive an error and be sent to a third party website. The application is suspected of trying to steal personal information.
Have your say
Are you careful with your credit card details online? What kind of websites do you distrust? Do you know anyone who is a victim of phishing? Tell us.
letter2editor@gulfnews.com
