Menu
Criminal gangs offer large scale Malware-as-a-Service: Websense

Criminal gangs offer large scale Malware-as-a-Service: Websense

With no clear successor to Blackhole, cyber-criminal gangs may be investing in other places to make up for lost income

The arrest of masterhacker ‘Paunch’ has led to cybercriminals to revert to less sophisticated methods of Malware delivery, including exploit kits offering large scale Malware-as-a-Service.

Websense security research director, Alexander Watson, said the aftermath of ‘Paunch’s’ arrest by Russian police had led to a trend involving criminal groups, who were former users of Blackhole, experimenting with different tactics such as the up and coming Magnitude Exploit kit, social engineering techniques and direct attachments.

“In the research blog, we show evidence after Paunch’s arrest of a popular criminal gang experimenting with the Magnitude exploit kit and then reverting back to less sophisticated methods of malware delivery, such as using direct attachments,” he said.

“This shift indicates that either Magnitude was not working out from a business or technology perspective by the cyber-criminal gang.

Watson said another interesting angle was that with no clear successor to Blackhole, cyber-criminal gangs may be investing in other places to make up for the lost income due to less sophisticated delivery mechanisms for malware.

“This could include more advanced or effective ransomware, such as CryptoLocker and Browlock or more aggressive installations of malware on compromised computers,” he said.

“As we noted in our 2014 predictions, we believe that in the next months there will be a return to URL based email attacks utilizing exploit kits that offer ‘malware as a service’ on a larger scale.

“The use of exploit kits is simply a more effective delivery mechanism- especially with an increasingly security aware target audience.”


Follow Us

Join the newsletter!

Error: Please check your email address.

Tags Alexander WatsonCryptolockerMagnitude exploit kitpaunchBrowlockBlackholeWebsense director

Featured

Slideshows

Sizing up the NZ security spectrum - Where's the channel sweet spot?

Sizing up the NZ security spectrum - Where's the channel sweet spot?

From new extortion schemes, outside threats and rising cyber attacks, the art of securing the enterprise has seldom been so complex or challenging. With distance no longer a viable defence, Kiwi businesses are fighting to stay ahead of the security curve. In total, 28 per cent of local businesses faced a cyber attack last year, with the number in New Zealand set to rise in 2017. Yet amidst the sensationalism, media headlines and ongoing high profile breaches, confusion floods the channel, as partners seek strategic methods to combat rising sophistication from attackers. In sizing up the security spectrum, this Reseller News roundtable - in association with F5 Networks, Kaspersky Lab, Tech Data, Sophos and SonicWall - assessed where the channel sweet spot is within the New Zealand channel. Photos by Maria Stefina.

Sizing up the NZ security spectrum - Where's the channel sweet spot?
Show Comments