Cyber Crimes Unit

Like us on Facebook   

As well as developing products to help people protect their digital life, Kaspersky is also working with international policing organisations and governments including Interpol and UN to help fight cyber criminals, or as Kaspersky simply himself puts it: “Saving the World.”

IBTimes UK spoke to Kaspersky and his team of global security experts at the Info Security conference in London recently.

“It is like living in a detective story. We don’t need to read these books because we live there,” Kaspersky said when asked if this was a good time to be in the cyber security industry. He believes that it is more complicated now that at any other time in history, but it is going to get even more complicated.

Hooligans, vandals, kids

Kaspersky has been in the business a long time and when speaking about the hackers who were around when he began his business at the end of the 1980s, he describes them as “hooligans, vandals, kids.”

It was a decade ago that he began to see the rise of cybercrime, where hackers began to attack the system for financial benefit.

Now he says that cybercrime has moved on to such an extent he believes that most governments are engaged in developing some form of spyware. “I am pretty sure that governments develop espionage,” he said.

The situation now is much more complicated, but it is not the end of the story. “In ten years’ time we will remember [the] present time as ‘OK, that was easy.’”

Cybercrime is a multi-billion pound industry and some of the malware and viruses being created by these criminal gangs is among some of the most sophisticated software being developed anywhere in the world.  This means that that these gangs are willing to pay serious money to software engineers who can create these programs.

Kaspersky is proud of his “collection” of cyber security experts who are located in dozens of countires around the globe, but we asked him if he felt some of the industry’s top minds may be swayed to the dark side by the lure of large piles of cash.  In response, Kas[persky says that there are three categories of people.

The first are people who find a wallet on the street and immediately hand it into the police, the second are people who find a wallet on the street and put it in their pockets, while the final category is people who see a wallet in other people's pocket and decide to steal it. He believes the final category are the people who will work for the criminal underworld, saying "it is a question of education, their family, maybe even the stars." He thinks money may corrupt people who belong to the second category, but he like to "collect from the first category."

Kaspersky also says that cyber criminals are very different from traditional criminals because at the first sign of a police raid, they will break down and begin cooperating immediately with the authorities. He points to the case of Hector Monsegur, aka Sabu, one of the most prominent members of Anonymous, who it was revealed had been informing on his Andonymous colleagues to the FBI for the six months.

David Jacoby, Senior Security Researcher with Kaspersky, last year carried out a year-long survey about cyber security and how companies are dealing with. He found that companies on a whole were trying to protect against everything at once rather than protecting themselves against specific threats.

He pointed out that every ten years or so there is a major security breach and that no matter what happens, something similar will happen in ten years' time. "I won't say that we are learning nothing from our previous experiences, but something is going on and I think we are focusing on the wrong things today. People are focusing too much on future threats."

He points to the last years attack on Sony's network which utilised a simple SQL Injection technique to steal the usernames, passwords, addresses and bank accounts.

Cyber security is like house work

When asked if they felt the security industry was winning against the cyber criminals, David Emm, Senior Regional Researcher UK for Kaspersky, compared their efforts to house work: "It's like house work. You do it this week, and you know you have to do it again next week, but you can't not do it, even though you know you'll have to do it again next week."

Jacoby believes the "state of mind" of the customer is vital to changing the way cyber security works. He believes that people wilfully circumvent the anti-virus software installed on their computer just so they can download a certain program.

One of the reasons why this is an on-going issue, is that there is no deterrent in place for someone who breaks the rules. In a enterprise environment, it is the IT manager who is blamed if something goes wrong, even though the end user was the one who installed the rogue program.

When speaking about the trend of consumerisation or bring-your-own-device (BYOD) where employees are being allowed to bring their own smartphones and tablets to use at work, Jacoby believes this does not represent as much of a threat as some believe, simply because people will protect their personal devices more.

"The phone or tablet they got from their company, they see that as a very personal [device], the PC or laptop, not so much. I will make sure that I always have this [phone or laptop] on me. I will make sure that no one can tamper with it,” Jacoby said.

“I think we’re coming into an era where the mindset of security is very important, not just technology, because we can solve and we have solved a lot of things with technology.”

Emms likens the situation to the introduction of the seatbelt. He said that it took nearly a generation for the wearing of a seatbelt to become the norm and he suspects a similar length of time will be needed before we see people taking the correct attitude towards cyber-security.

In a bid to solve this issue and get people thinking in the right way about security, Kaspersky sends its experts around the world to speak to companies, universities, primary and secondary schools as well as governments.

While Kaspersky has been battling cyber crime for the past 25 years, he has lost none of his passion for the job and will continue trying to save the world one PC at a time.

To report problems or to leave feedback about this article, e-mail:
To contact the editor, e-mail:

Article source: http://www.ibtimes.co.uk/articles/335100/20120430/kaspersky-malware-cybercrime-cyber-security-mindset.htm

Nearly two-thirds (64 percent) of IT pros believe their organizations will be the target of a cyberattack in the next six months, and three out of five (61 percent) say the attack will come from hactivists.

That was one of the findings in cybersecurity firm
Bit9′s annual security survey released last week.

What’s surprising about the survey is the concern given to hacktivist attacks, Bit9 Chief Technology Officer Harry Sverdlove told TechNewsWorld — “even though Anonymous and hacktivist-type attacks represent a minority of actual attacks.”

Moreover, when the survey’s questions began to get more specific, a different set of worries began to emerge. For example, when asked about the types of attacks that concerned them most, nearly half (45 percent) the IT pros said malware and 17 percent said spear phishing–both methods commonly used in attacks by cybercriminals and nation states.

By contrast, hacktivist attack methods received low concern rankings from the respondents. Only 11 percent were concerned about distributed denial of service attacks (DDoS) and 4 percent by SQL injection assaults.

“Once we went a little deeper, they were really more concerned about the types of attacks and the data that is more the target of cybercrime and cyberespionage,” Sverdlove noted.

Healthcare Data At Risk

The U.S. healthcare industry is one of the most at risk for significant data breaches and one of the most likely to be targeted for its well of protected data, according to a recent report commissioned by
Kroll Advisory Solutions.

Only about a quarter of the healthcare professionals surveyed for the report were concerned about the financial consequences of data breaches on their organizations, Kroll also found.

“This is surprising, given the fact that breaches in the healthcare industry ultimately come at a higher overall price than the cost realized in the financial and retail sectors,” notes the report.

One reason so few healthcare data pros are concerned about the financial impact of data breaches could be linked to their short-term view of the problem. They’re blind to the long-term effects that some of these events can have, according to Brian Lapidus, senior vice president of Kroll Advisory Solutions.

One data breach had a “tail” that exceeded 10 years, Lapidus recalled, so the organization was dealing with the consequences of the event for more than a decade after it happened.

“People think of breaches in terms of the actual event, and they don’t think about the tail,” he told TechNewsWorld.

Security at healthcare organizations can also suffer from a preoccupation with compliance, he added. “Compliance isn’t necessarily a driver of security. It’s the beginning of it — not the end.”

Iranian Oil Depot Hit by Virus

Iran is starting to become to cyberwarriors what the Spanish Civil War was to the Wehrmacht.

Two years ago, that nation’s nuclear facilities were targeted by the Stuxnet worm, which knocked out 1,000 of the 9,000 centrifuges it uses to refine uranium.

Last week, the facility it uses to export 80 percent of its crude oil was targeted by a computer virus intended to disrupt operations there.

Little is known about this latest cyberattack on Iran’s infrastructure, but apparently it hasn’t done much damage yet. The facility on Kharg Island is still operational, and while some data was affected, Iranian authorities are saying no major damage was done.

The cyberattack on Iran came just days before the U.S. House of Representatives convened hearings in Washington, D.C., on “The Iranian Cyber Threat to the United States.”

At that forum, members of Congress were warned about possible cyberattacks on power and transportation systems in the United States.

The good news is that Iran is not as sophisticated in cyberwarfare as China or Russia, Frank J. Cilluffo, director of The George Washington University
Homeland Security Policy Institute said in testimony submitted to Congress.

However, there have been reports of Iran hooking up with Venezuela to launch cyberattacks on military and civilian targets — including nuclear power plants — in the United States, he noted.

Moreover, Iran has been willing in the past to outsource its dirty work to terrorist organizations, Cilluffo observed.

“There is little, if any, reason to think that Iran would hesitate to engage proxies to conduct cyberstrikes against perceived adversaries,” he said.

Breach Diary

April 23. Opponents of Texas Voter Photo ID law file brief alleging state’s attorney general exposed the Social Security Numbers of millions of voters when complying with a discovery request in the case. The disks containing the information were returned to the state by the attorneys requesting the information after the mistake was discovered.

April 25. Sixteen months after the fact, Cryptic Studios, a maker of massively multiplayer online role playing games, informs its users that one of its user databases was compromised in December 2010. “We have no evidence at this time that any data other than the account name, handle, and encrypted password were accessed for any user,” the company says.

April 26. UK’s Serious Organized Crime Agency, with FBI and U.S. Department of Justice, shuts down 36 websites trafficking in stolen payment card and online bank account details. SOCA estimates the raids will prevent more than US$811 million in potential fraud.

April 27. Iron Mountain (NYSE: IRM) and PwC reports that four in 10 (42 percent) European law firms did not know whether they had suffered a data breach in the previous three years.

Calendar of Events

May 2. Security of Patient Data. Webinar, 2 p.m. ET, sponsored by Kroll Advisory Solutions and Healthcare IT News.

August 20-23. Gartner (NYSE: IT) Catalyst Conference. San Diego, Calif. Early bird price (before June 23): $1,995. Standard price: $2,295.

---

Article source: http://www.technewsworld.com/story/What-Evil-Lurks-in-the-Hearts-of-Hactivists-74981.html