Cent, five cent, ten cent, dollar: hitting botnets where it really hurts
暂无分享,去创建一个
Spyware, Adware, Bots. In each case, there is significant evidence that there is an increasing financial motivation behind the writing and distribution of these programs. In this paper, the concept of using our knowledge of these financial motivators to combat malicious software is introduced. Can attacks on business models actually provide relief that technology alone cannot? Can we deploy our technology differently, in order to receive direct benefits of this indirect attack on revenue streams? Our conclusion is that not only is this a possible solution, but that it may be an extremely effective one. This is illustrated by a description of our business model attack generator, MARK - the Multihost Adware Revenue Killer. Using MARK, we demonstrate simple but effective attacks against Malicious-code generated revenue streams. However, the creation and deployment of MARK raises thorny legal and ethical questions, as the impact of the technology is widespread and could easily be targeted at legitimate online marketing models. Do the ends justify the means?
[1] Steven D. Gribble,et al. A Crawler-based Study of Spyware in the Web , 2006, NDSS.
[2] Bill McCarty,et al. Botnets: Big and Bigger , 2003, IEEE Secur. Priv..
[3] Nir Kshetri,et al. The simple economics of cybercrimes , 2006, IEEE Security & Privacy Magazine.
[4] Stefan Savage,et al. Inside the Slammer Worm , 2003, IEEE Secur. Priv..
[5] Peter Szor,et al. The Art of Computer Virus Research and Defense , 2005 .