Botnets and Cyber Criminals
In the last several years, the nature of computer hacking has completely changed. Cyber crime has risen to unprecedented sophistication with the evolution of botnet technology, and an underground community of cyber criminals has arisen, capable of inflicting serious socioeconomic and infrastructural damage in the information age. This chapter serves as an introduction to the world of modern cyber crime and discusses information systems to investigate it. We investigated the command and control (C&C) signatures of major botnet herders using data collected from the Shadowserver Foundation, a nonprofit research group for botnet research. We also performed exploratory population modeling of the bots and cluster analysis of selected cyber criminals.
KeywordsCovert Channel Underground Economy Status Message Phish Attack Malicious File
The author would like to thank the UA Dark Web team for their support of ongoing terrorism and cybercrime research, and the volunteer effort of The Shadowserver Foundation for helping to make the Internet a safer place.
- Abbasi, A. and Chen, H. (2008), “Analysis of Affect Intensities in Extremist Group Forums,” In: Terrorism Informatics, E. Reid and H. Chen, Eds., Springer, pp. 285–307.Google Scholar
- Dagon, D., Zou, C. and Lee, W. (2006), “Modeling Botnet Propagation Using Time Zones.” In Proceedings of the 13th Network and Distributed System Security Symposium (NDSS).Google Scholar
- Krebs, Brian (2007). “Terrorism’s Hook Into Your Inbox.” Washington Post, July 5, 2007. http://www.washingtonpost.com/wp-dyn/content/article/2007/07/05/AR2007070501153.html
- Smith, Brad (2008), “A Storm (Worm) Is Brewing,” IEEE Technology News, Vol. 41, No. 2, pp. 20–22.Google Scholar
- Sunbelt Software. CWSandbox, http://www.cwsandbox.org.
- The Shadowserver Foundation, http://www.shadowserver.org.
- Thomas, Rob and Martin, Jerry (2006). “The Cyber Underground Economy: Priceless,”;login: The USENIX Magazine, Vol. 31, No. 6. http://www.usenix.org/ publications/login/2006–12/openpdfs/cymru.pdf.
- Weimann, Gabriel. (2006), Terror on the Internet: The New Arena, the New Challenges. Washington, D.C.: United States Institute of Peace Press.Google Scholar