In a bid to capitalize on the rising tide of malicious code, enterprising hackers are now commercializing toolkits and selling them for profit.
Entrepreneurial hackers are making money from code that was freely available just a few years ago and generating a healthy profit with prices for toolkits ranging from $30 to $3000.
The 'nuclear toolkit' is just one example.
While it may not be able to take down a nuclear plant, the malicious code can be used without detection and is just one of a range of toolkits available online.
However, if $3000 is too expensive, malcontents can get started with a budget toolkit plus user guide for around $25.
Websense Australia manager Joel Camissar said an entire industry is now behind developing and publishing toolkits for profit.
"The Web sites that are hosting the malicious code also include a statistics page that shows the number of infected clients, the percentage of clients that have been infected (by specific code) and a breakdown by country, operating system and browser," Camissar said.
"Our research shows that 38.2 percent of visitors to a specific Web site said they would be willing to pay between $100 and $300 for exploit code. Another 14 percent said they would be willing to pay more than $1000.
"Some of the Trojan code we have also seen is written to bypass antivirus and antispam and overall, hackers are becoming much more targeted, creative and business savvy."
The 2006 Websense Security threat report, which is a synopsis of all online threats discovered by Websense in the first half of this year, shows a dramatic increase in toolkit availability compared to last year.
The report found a proliferation of toolkits and "how-to" manuals available online and ranging in price from $30 to $3000.
The report found 15 percent of all Web sites designed to steal user credentials are built from these toolkits, and a further 40 percent of all sites are hosted on compromised machines, clear evidence of a high level of hacker 'professionalism'.
"The increases are not solely the result of increases in the number of entities set up to assist 'non-technical' users by selling exploit kits, but also the use of network-level vulnerability exploit tools that allow attackers to infect sites to host their code," the report states.
"One toolkit can be purchased for between $25 to $300 and at the end of the first half of 2006 Websense had 7500 sites in our database either using or pointing to this specific code.
"Another toolkit available is the Nuclear Grabber, which allows an attacker to sit on a real banking site and grab data from electronic forms and this tool, like others, is only available on Russian Web sites. The cost of Nuclear Grabber is a mere $3000."
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Controlling storage costs with Oracle database 11g
The state of Middleware
IT Service Management Needs and Adoption Trends: An Analysis of a Global Survey of IT Executives
Making the Business Case for IT Consolidation
How to improve employee productivity in small and medium businesses
The Case for an Untethered Enterprise
Look before you leap | Key considerations for moving to 802.11n
Zones provide focussed content from Computerworld and leading technology partners.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #98: The Future of Datacentre IP 18/12/2008 10:33:00
CW Live speaks withLin Nease, Director of Emerging Business for HP ProCurve, to discuss the future of networks, including the effect of IP-based storage on datacentres, new capacity requirements generated by the use of 10Gb Ethernet, and how an efficient network design can slash energy and cooling costs, and help enterprises build a "green" image. - +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport.
F-Secure Warns About a Worm Affecting Corporate Networks 2009-01-08 16:42:00+11
Research software developer appoints Susan Dart to new Business Development Director role 2009-01-08 09:08:00+11
Research software developer appoints Susan Dart to new Business Development Director role 2009-01-08 09:08:00+11
Anyware Introduce Two Powerful PCI TV Tuner Cards with S5 Power Up and Windows Media Center Remote 2009-01-07 17:30:00+11
Fortinet Cures Mobile Phone “Curse of Silence/CurseSMS” Attack 2009-01-07 16:30:00+11
Strategies for Eliminating .PST Files
Join industry expert Martin Tuip to discover best practice strategy for the archival and removal of .PST files using email archiving. Learn how to ensure long-term email records are there when needed, and reduce the risk to your business and clients.
