|
|
|
Data Ransom Scheme a Surprising Play for Hackers
By: Brian Prince
2009-05-05
Article Rating:  / 7
There are 0 user comments on this Network Security & Hardware story.
When it comes to cyber-crime, holding data for ransom is not a common form of attack on enterprises. The recent hack of a Virginian state Website is a reminder that ransomware and other schemes can still be viable ways for cyber-crooks to try to make a dollar.The PC Cyborg Trojan appeared on the scene back in 1989, encrypting files on
the C drives of infected users. It then prompted them to contact the PC Cyborg
Corporation and pay a fee to have their files decrypted, marking what is
considered to be the first piece of ransomware in the wild.
Roughly
20 years later, a hacker has attempted a similar scam, this time breaking into
the Virginia Prescription Monitoring Program's Website and demanding payment in
exchange for access to data on more than 8 million patients. According
to Wikileaks, the attacker or attackers put a message on the Website April
30 stating that the database of prescriptions had been placed in an encrypted,
password-protected file. To get it back, the state must cough up $10 million,
according to the demand.
But
at a time when botnets are quietly stealing mountains of financial and
corporate data and slinking off into the cyber-crime
underworld, data being kidnapped and held for ransom is not among the top
threats enterprises should be worried about, security pros say. Truth be told,
the biggest threats are the ones that attempt to leave
no trace for victims to pick up on.
"Ransom
hacking definitely occurs somewhat regularly, but I'd consider it far lower on
the risk ledger than most kinds of cyber-crime," said Rich Mogull, an
analyst with Securosis. "It's far higher risk to the bad guys than quietly
stealing data and selling it on the black market."
Mogull
added, "I don't think this was ever a hugely popular form of attack, but
it's one that draws a lot of attention the few times it happens."
More
common are incidents of researchers attempting to blackmail companies or
vendors when they find a vulnerability in software, but even those schemes have
declined in popularity, Mogull said.
Certainly,
there is no shortage of people looking to exploit vulnerabilities to either
steal data or rope users into scams to buy rogue anti-virus software, and the
profitability of those activities may make a high-profile extortion or
blackmail attempt less attractive to black hat hackers. Or, as McAfee's Dave
Marcus suspects, the deterrent may just be the threat posed by
additional interaction with the victim.
Ransom
schemes "were never hugely commonmeaning they probably never took off,"
said Marcus, director of security research and communications at McAfee
Avert Labs. "It might be reasonable to assume that it was always
easier to steal and sell data. By communicating with the victim, it seems to
create much more of a chance of being caught."
While
there was a conviction in the case of the PC Cyborg Trojan, tracking
cyber-criminals remains a notoriously difficult proposition for law
enforcement. However, according to a report
by CBS News, the FBI is investigating the case in Virginia.
|
|
�������x}ks8q�8c�Y/;RJX�ZJU*$)KR~�˩'o�҃dωS%�l4�ݍFλ$i9�rsݙk��j֢w.�?���Yf8m�TEK\ߤ~�Am;t� =4mMFNHB��8 \?g3U;Y|��vP
ߩ�U�aÙO,}!*{:|@K4��1Q�D/(�г;/�PQ~�DXV��ٮq�4]�"�X'�[vx)B�y!l�
�1#osݿ!`$nRv'n7oR 205b$��V�,"%0Ýȵ�:s���08Jej-nf,�}KH;R@}k��{�>5I
i�w1 9�,uQj9R}MV�c�$�ס"O�Um_k|�tfs< s~3
Co�E->'l"R�ۄ@ظz00!�%�D"S��@uhs�2n�
eþ9r�Tݯԕ^rwwW�ӽ�l˙[8^pgoF3j�� �pd
vtu]+iu�U;�;yԼ83Dt9�W;YHM~gDr V*,D���Rc�,�/Bݣs>o�Vs7-zISC �40"ÌJ�3~̢J�9�gsKbй;d9>=vN}3�fPUM�~ 3he+��2hZu\9�uH{#+|q>�5M0\ܱ¬:֪o~�vO|�3R?�&�:aZ+j庤�#3��\v4.?�uIAұ,�m��0dN`mY\�H!-O|T|Y|ԛE34�i[��2)�=-8��Z��u��t �+P:o4C+D_x0Nusn6
@ki��Fk�PY��Tak6�R\� 9jb�)6B̄H )'7'M�XZE�U��>hi"A[T}O��%ތ�1E|r+�E�!\J�!}!��0!p,z4�p�O�yx!Bwެ.�Uմީ/~}�ޡ:I5tieO~�S�35ލh�X.B2i�%!�g8W5MGZ'cWPsv�/*uU9-z�Qn�ũl�:2X�
jXR7XaQ�p6� 0h��v3�Ϩig89y��t$�ࠣM�/�C˥yj1�@�
L��^0i�|�V8;�t�#uӹ�=��W45(hu0#G�E�6� &>q�P`�2��Z�9ܹ
L&��0�`Dy+л#i�`y1�&=��զA�{ �Tgxs��=w}
�
�{`� ��ޚ�ꖭ,�L<�ħܠ{ԁ.q<ɜ+)
��-P cRRR$S !�hI#r����
Bг�,`@o%`�`[X;� a��\.y"�M':܉;T>ڹLXأXB�Y�X/E_R�23#Cdɬa���X�91{M�f�T`"[ụLKa�k`FXW�5^C&tc˰` =A.ϼGs6I�`0EHC��;Nm:� xw�CoBCEw[J�0aEiŬ9g)9��i|X#<~KMm
h,��S˘
R
�g?f0-���qڛw�CV<ۢf|a* ,q�r�ׁ�fX8ȣ�=p
ԇ��&=|Yz�Y۶h
/&](\u�I�J&��k*HY3�j-y�sD�r
�VOr1r@eOSq�H1g0dz7[V@q=13�7R�tgZ�C+>q^i.;[@\g˺z+fYT]^ӛA']�օV�P˥=�@x#� lK/,:�+c:K�_ji��hH*E6�@p.�E�O�␘ 0�Z�m7D=t�pȞZc�nP
jrI)Ȕm%s�yt�5E&Xf&`ܰ%
6���%P���$wS~8��;[1P!k�^G'X�y>]|>'}=r=C6�]?C�K��}�X[��*���W(
��+���е�f;ʰY^�48~|2\u:���!2�l��{Lu�D�m�ǖ
�#�~XG�M{�R^-#/0kaT5C�l��q,�Y�6�Uصm.2�uD(-CZ&3��O6uT8F_-O#BU��&Deq8TQ��&ns�sa*/7+�)Z|�;O�ZV*ժ 9ɡUT\=W*qv
s�1Gq�)4G
�)�7_�3ch9{R�kJo?�Ct�>pɥ|`䓇
,p�� |�/�"yl��ė:(`�JZY>V�6ʼnGG ֝���k�u�V87V|�"� V@?�a=E��CwV8%����LѦ5�6
n<<�j�U
~ӂ���ZB�fem�B(D(xo8p&~)h�?
Uk%}vW�C�g)jf��#QL
`��
9v}W(,Pj���OLg��5esVi�V))�]%�f�2АjVh�_�/_qm(}�^�q&�nfG{m9!�plsHNP�͕�G�X�)Ul�qomA؋W%Cf˴W6i&01"4"�~uUʩ`x,4J,F�fĜA]o]b+o]>iz>cV�AZ\iv'oQ2Z -УG{�'a*r1=_�>L}��;L�;6��E;"qgD�d��넱Ŏr�۬bID)(/9��Ε�UuXi&̋F(+f6r�
A�\ۥ@qc�`��n#2v"=�zJ*>#x�Z�u1�Gci��}�SU!Ӕ1�ZeΌ}/(SYmiq#,�F.�,Z2|���{6
��8xjYʊnVv` d_V�C=,
=X디Z94¢E�̢*��'o&ŏj(5rN3HD>�PjYA'?Ju_-UղR3YT^#DQdQp&dIH�5�9l)P`�P(S=�z T@mZ +iQ/
�dw!]:�� �PG"�cX݂��t;a�XLd;γ�#X�viW4c�V�S=#nƍj*$T+IjYt�~(0|nȄKOXV�$h7�I}M�VJ�PȹeG\�0B_ݫ=b�%~W9@`�|RQz�t9#�T�`| @-#�y?�'�b$ /e;�T�.nr�߂B'G7ƒ"���_I��D@7wZTa�&3w111u?|{~iwo�j�[(
L��$T��)C�h`i12�@W�?v~��ؓ@:iwϾ�9��&=~.=Н :~w��a�a=$A|}�-5.
�_E�R>$:-u[�:]4���=L@IP
��4p=$.&#N^Et�l��6zv9�DQ
�2lOw4z7��Շwֻ�Y#N
z�s5A� :ڥY�KAV�CB3pqXm�slP1õh�L٦�;+^�+[�Z\�f·?ĄB10j�y@�(��b z�H)'4
�n%>v�\bzȖ�hp�+�C*QW"2�Eh%i�A%;ǽ�g
<@�9N�xDwD\E,}+)Fy*}y:}_exL+%�GBY3g�Ig;#$u�SPۇ��_:r;�1dy!ꜱr�7��{�%E�٦z;W�dj&ubNL5�W"Rv
O|QB�AqAg?�zΩl'imiQf�-uyj��t~FDb%h4eW:BzcQ?<�'x!� r�ӢZ/�wuϏUzUbԽcsc�;�Ql�wR;2x�;�yZ1�ݾpney�r0D|;t�s�'5\;(@&nL xq�f='�s��o.h�cm:;@�TBP$w"B�+QD$��=,`�*h
5nW8�KoCӝ閃]Lv\�u6\ŗ)arԁ>cA�ɼ��}G��7o��m�\�=eNd>HАZ�=ty9#�-�Pݷ͆�F=f/ݷvcW}F��y�P1h�鈧^4gvlLg�I")VzUw7`\8%/+xsr/�'CI/n�9�P2�vAK�Js`Ⱦ�qC7跷�b��R?w�B!�|�]&
{~W*]ۣPIݣ뻻~=mҲ(�r]�ZDqw5U {II%)tu<.J`RTk�y^�Af6vo"B�"fc�ME[o���쀜Qwȩ{G<苕`\%v0u�˴Ѧc6_�,ҩpv�N0�]+�.w2�@]Y�� ��@�`��Y�e�J&`RS-Z� JU���yuYJQ���0]n!��i�32PI�<9�
)
�\;K]ȴL�b6?=zg[qH?w:'IU&T�F_pG&۪|ǭ)5۸_M!oF՞ʛ ]Ԣ `��t5-;I<�@����D���lǛaŭ*)%\R~:0in;ZPՁԳx�p
`-ułWTVʢt,Ѻ5O&V��kDMԨ �5D^^d�J�_|zLXm� 攕Ʈ/]鰊h/�a��H-H�[W$$iʦc^}=SwVҹ9È>�ƃ6��"q0��p�FM
h3oVշ�|븇e9p˕[(^\|?ZVKjD}�V$:kXatDC]>K/aD|����%�T8:�_W��$�7p@x��[ �Z���H�ۊ-7�|֊uLנYL S%lȉ/MVR:XXHNޥ~G�}ԂG���%A?��ȷ-t H�"!�H�D�F�sԜЯĄBg�j>
y�,�3l�{i0�K:$P`"t�7�2Z-;�ֺS0-X:��ᐈ赗FD�ܦ\bn[f@H̛;U� ؛���k
9R7S(`$�#uxֵL)ru�]�QDIh[0_�]p1m*Gz4k>Zkb�o �-۔tGJ."O0įd��L-l�1m`cbEY�H�-qɆi>"�/�d2�e>K}��+ߘC%�j.;0~qmwVZ�,*[v�
NMX�6/r{䪶�f`_yr۷D%R|�
˿�2?r_|k��N�(D>�LU6SB8}B�`/d;6L%Ij�~6}A+=V4b
mX�[`}X8� �wy0m-mYѧ3.�|W�ZZJ
%i[�z���9ѷd� �Ɨ��k2EI3�Ʊ)�+{j4T1,,Ydn[B��ᆉHO�y�́Nxtowwv]g�3�i7��7(P䧗>kA:e�K�/�S�/yBMwM�oI'R�^0~T��PAgXt�(C^P"^ݦ��ͲM�}1I�
u9�ڊbMp�@�ע,~�VZ�� �O��]�c)~c�)�+hW��x���B,p}�XFpxIYL˃itG9L6��MEfIȢDE\��sI�֪J]]-���D�r/*�r+Șznj=! c%TAN9-�S�5���_6�RUBI� ㏴�|^k�ik�6j=!ɣ`5��<�Exn&/kx�zJ2Ko^7G'�ܬTMe.�Gܬ�ݸ!5#ߢcf
�p�lH�c阋y�qMY�/rM�!dC�Z�l3LµYA*d�8I�Vuק6:�̽K:ND0FAJ
�j%V*C/rCyQ��9��WVkRj*>5BYQ�r-aJ#g�nM6K�\�I':Vg|?HemTdz}�Ra
):�$�DJd�O�}TK[\JH`o2c~3�ǖ�a>9�(�-^a̷𥳐fej����,�Ԯ�~1�u�+^V�"W�c-~6;�m:s_a��i*IwM[.g{5�gFRmF�έ�z_ajs{=sc%ge!KW�lfm۲VSo4J� ¨FJ�Oa��Twt�c<�:�Iߣ4�?R)%o$:*�߈C*g=0GU��Tbtb
fZ&F&#ZikHֲ4��=�LD^��+p��SM�C7R�yVmIz .�kx�>a�O�Rk5eaj+;Y�!kj��]=ҡ�+qܑufi0m�B+�N �d߄^P>EGT�:ћWZ-ɽc�x%R$!�fꞑu3�ta��גM\,*Xmn@G��^ĭm{rc���!'vq]Q
s�<]Q''͘0[u?䏃
OS
l
� \Z�p4�pB7Fsꢯԕ�&MFRw/rOaD9p=Sˡ["�kZ1ш�@Q>��~3&'N;%"�����J���!-L�3ۈ��)��0�װ�Þ�1;my^��oـ/u��Ͻ%�c�Z|G"�1^#&�3)L�_A1R�B$1�Ybȩ[�$@Q:A�U��
7�T�-G,(�!�L)%B7S�IZh_�ɹ��fFé��� :la`t��.t�ϼðq7]_�0_�Ln
1�YG7`C[�UE�Y|ob�L<`A~�Lmݜ�(�8��C�$Ѕ:x,@#!��9ω�륵'��ka]M-#YQAaP8�Z
��+z+5'I]SP)9CȮ�K�*^x�'5P6��PV�w��2Qq6�LSz%
%uW0`A i�2fg4t\K-HI�P��`;7C���rһ"-rrUr]Y�ra[+p�RnQw{ѹ^�0�31F;�d�6MJry:2 '��S�rԙpm.4�"}Ƀw�e�}Q�X\�m�OtÓ(?����.!j�b\թ2MW?z
[Up�/Пxu3�K_-�fy�P�M��/ǭc�qǤBjs�'X%���
)ns9�EЌLjV}Qu�xS�?
_A�pj+�彜r6Р)?'@�|�?�Z_~-4O˻B)�9{S�ws/4?sʿ@g�,�>v9���sCsyNρ?s��>�ʯʁs�ڿi�:s$CPʑ%.Ny��唗�ͣ�~)W@__�y+%INy�sYE�~vï�X^йR*4
Я#�ߗ�w2~62A^�u
CFW\=o /dt^k8&Vnwp_l(Σ�_xi� �+P= x�EB+�g�ٔl?vFnmli9�(c#h��cHO9}ʒ\�-c�CLS3;N2�=��&�nC�7��v3}�h�ćaAx�`:
~iMog�]v�<2kݫ++c+p'k͠6Kֈ'E>Yݩ7�xЧx.
o�2q*˯�7ýEy�2�78�0׀��#� 3�-0�`Y~8#las;~�Elxa�Qbl!lx�6�k楲pN!3J4?0�
fZ���gޣ8
!rW�zGrt5p�qg��ushu
R#ij�~jZ)�#\!a،p=�Cj�UUEVjr�p`�VQ*D`I9#�T�x|D��eiګ.��91C=b�;h8[閾P���p
E��Ч��/Dw̆"@ŗ1 {7�/��~*_��{_ۉ�G2�)�21��1@͝eN&u1*r>b%q<�%`h���.>&]\ʠaC�ao/XbKZ;�cp��\;�l�=G5 gjy(}by0\9Kh,}SU�rߢQ�'C1<:,ed`�
tOЫ�ȹf"�9�oє^\gC��΅�*˗ X֭2d*��k`VϹep-�c6O-�5U,%w|u��`�|!�]0B\hfNY{?�/�Cܢ|�/+�wL��p(�{Gۀ�0�
�x�n'1;�)�>dJv͘?�,)m�Ĵ�jd?G��[wzhLS,h_cErd9�GU�ZCQ�8ۈq�eA(e6Lm (~%6,x)(|v�@e8>�cc>m�=]wrl#�kOW�wfh�rN�O^�!��N�1m��X3!?e�ITǓxi���Ō.�Q>ಓJ_�bH�>/Bl����Kz;o�s�Lx��#ÄYZg%^#%&a"c'x M#v[}�nA�=cO�Yl@�O咤 X3W]d��A_d|bOh�>Zo.TùLH�75��ס)e4d7�,<��bsފjd!zK2�jSo:h}v/[ߊW�?�>V@U}��È#�1*�yvh�:"QF�V�v,˽9=�=�A�Sh<��ϛW5�;
gCJ�Ҧv=鱽�$(\d�~\g;Xv M8��Ba2\�H��xky�f#%3WnJP/jdV@8̛l+�~Hϱ�I���$`�:�Vږ+yL�n2?J��@�J]!�� >mE73T|1
�%`GY�U`ZKr�8ǩk[Vmxtz����w}�u+e!)��1�:�f˟]챺WIٶ�7G,cݰsQa[:�6
�n
ۊ
u�y˷wf|M*|OEmE>m+��A\'X3'5c��b@8f�{9rW=m�^f#9uV�ed�g)d̅2 !ɴZxyU~ҥ�N�.I,g`aQd+$*)�ؐ������m5'0X�1+ (��N�R�Qf7�`�N*)As�a#Dl���[ApV7�.]2�8Lg��3E~1ZW:U9um�j ֺW6x�ozc|�[0�XjPtP>9)z��0�
�\M萻kÐpaif(R�c9zaf�r[�W`0�Z�k��ASk�Le�U��|t#GYEL`&;]+ N*t&vж?82a�cL
1L\,R�.�7Wv!;�Zyʋ�|�_E>�ODNű<<�Sf}')VSL_X1�_<|:L+��9ƕEy�@Xqө8Yo�u.)Z��Byһ�H'ٗ��RI>S�}��v4:~vډ�.3J�bq')t?��V��zW X�ٺqKZ�?\>]@ђ�uzWN��J]ŇtEg_0��6A|>ǐy6�=x�L�
g
UhT;IxdMn+)FҢpL\2L~ѥ;�7
D^4�mJHU&s)c�M�Wc\)MC39U�2k��+&|YdLp�-�ϱeRZ`l/Z6w?~e m,��
|
Network Security & Hardware 
