Golden Cash a "milestone in the cybercrime evolution"
By Elinor Mills
Published: 18 June 2009 11:19 GMT
Researchers at security firm Finjan said on Wednesday that they have uncovered an underground botnet-leasing network where cyber criminals can pay $5 to $100 to install malware on 1,000 PCs for things like stealing data and sending spam.
The Golden Cash network, dubbed "Your money-making machine" on its homepage, sells access to botnets comprised of thousands of compromised PCs to cyber criminals for custom malware spreading jobs, according to issue two of the Cybercrime Intelligence Report for 2009.
Here's how it works: a cyber criminal creates a botnet by hiding malicious code in a legitimate website that is used to turn web surfing PCs into zombies. The code, typically an iFrame, points the PCs to a separate website where they are then infected with a Trojan backdoor that reports back to the Golden Cash command and control server.
A-Z of security
In order to increase the number of botnets, the Golden Cash server installs an FTP (file transfer protocol) grabber on new zombies to steal credentials used by the computers to run websites, giving the server control over additional legitimate websites. Approximately 100,000 domains, including corporate domains from around the world, were identified among the stolen FTP credentials under Golden Cash's control, according to the report.
Customers pay for the ability to install different types of malware on the Golden Cash bots, which are recycled for new jobs and new customers afterwards. Prices are higher for compromised PCs in western countries, the report said.
"This advanced trading platform marks a new milestone in the cybercrime evolution," Finjan said in a statement.
More technical analysis is available on Finjan's Malicious Code Research Center blog, including the fact that the command and control server is hosted in Texas, the registrant country is China and the "proxy" website that tunnels traffic to the command and control server is hosted in Krasnodar, Russia.
Original article: 'Golden Cash' botnet-leasing network uncovered from CNET News.com
Installing and configuring desktop operating systems, updating the ghost image as new PCs/laptops are introduced using: - Sysprep / Unattended ...
Comfortable working with FTP technology • Vast MS Office skills including Outlook, Access, Word, Excel, PowerPoint. Internet-related technology ...
Excellent web design and cross browser testing skills - you must be able to demonstrate graphical creativity * Understanding and working knowledge of ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Tim Ferguson Exclusive: Former MySQL boss Marten Mickos talks open source Why Microsoft could become one of the "biggest friends of open source" and why Oracle getting its hands on MySQL could be "one of the biggest open source coups ever"...
Naked CIO Naked CIO: Cloud computing more expensive than we thought? Smart IT leaders will examine the impact of how they pay for tech