Skip to main content
The Russians are Coming

“We woz robbed”, and it’s not football I’m referring to.

There are no penalties in cyberspace. Just ask AOL, which having just lost 92 million email accounts to the spammers, is doing it’s very best to assure customers, that as ever, security remains at the very top of the company’s priorities.



In fact, it’s hard to blame AOL when something like this happens. Back in the earliest days of the World Wide Web, when Netscape version 1.0 reigned supreme and Microsoft’s Internet Explorer was a small joke, I was the Director of one ISP, who had a call from the Police one morning, telling me that the entire subscriber database, with passwords, was sitting-up in a popular hacker newsgroup.

At the time, we didn’t realise how pathetically vulnerable the technology of the Internet was. Many of us at the beginning of the online revolution were at the mercy of a small team of ‘expert’ system administrators who frequently resembled refugees from a ZZ-Top concert and security was often secondary to building a network organically and fast enough to keep up with customer demand.

This month, I spoke at a MessageLabs Security Forum alongside Spamhaus’ Steve Linford and MessageLabs CTO, Mark Sunner. My job was to talk about information security as a board level responsibility and Mark and Steve presented a double act on the size of the security problem now facing society.

That problem now appears unstoppable, in that since legislation, against spam in particular, was introduced on both sides of the Atlantic, more spammers and more unsolicited traffic has been the consequence, with 70% of all traffic flowing over the Internet now being garbage, Of course, it will never reach 100% because there’s still room for legitimate email out there but as more end users appear online, such as 100 million new arrivals from the South China coast, the Internet’s storage and our own security is going to have to keep pace.

What encouraged the theft of the AOL list is that spam is big business and Steve Linford points out that ‘Spam Supermarkets’ are now a regular feature of modern cyberspace, where the bad guys go to trade information and addresses. Since the interests of organised crime, virus authors and the spammers started to coincide, most of not all viruses and worms that now reach our filters carry ‘RAT’s, remote access Trojans, that allow a victim’s PC to be taken over by remote control. This leads to 50,000 new zombies appearing each week, which are in turn traded in these supermarkets as potential open proxies for the spammers or as hosts for everything from paedophile images, DDoS attacks (distributed denial of service) to Phishing scams.

Computer crime is now a lucrative business, with very few risks and penalties. The bad guys in question are invariably a mix of leading Boca Raton spammers with their Servers hosted in China and the Russian Mafia, who can’t find ways of spending the money they are making from eCrime fast enough.

Meanwhile, back on the average user desktop, visiting Websites with Internet Explorer is now more dangerous than ever before. The most recent alarm involves a report that organised crime has been hacking into well-established and trusted corporate websites and installing exploit code, which in turn installs RATs and keyloggers into the unsuspecting visitors own PC, leveraging a known vulnerability in Microsoft’s Internet Explorer to create even more compromised PCs and larger ‘Bot nets’.

At what point, I wonder, does society reach a critical mass, a pain point where we concede that 15% or 25% of the earth’s PCs owned by spammers or criminal gangs makes the Internet unviable as a commercial proposition. My own guess, is that in the UK with four million people connected to Broadband, we may have as may as half a million Personal Computers infected at any time, maybe more but hardly less. Who’s in charge of the Internet I wonder and the answer I suspect is the Russian mafia.

Comments

Anonymous said…
A good solution to these problems is a mandatory
user-configurable firewall at the ISP level.
Explained here http://www.millstream.com/firelaw.html

Popular posts from this blog

Mainframe to Mobile

Not one of us has a clue what the world will look like in five years’ time, yet we are all preparing for that future – As  computing power has become embedded in everything from our cars and our telephones to our financial markets, technological complexity has eclipsed our ability to comprehend it’s bigger picture impact on the shape of tomorrow.

Our intuition has been formed by a set of experiences and ideas about how things worked during a time when changes were incremental and somewhat predictable. In March 1953. there were only 53 kilobytes of high-speed RAM on the entire planet.

Today, more than 80 per cent of the value of FTSE 500* firms is ‘now dark matter’: the intangible secret recipe of success; the physical stuff companies own and their wages bill accounts for less than 20 per cent: a reversal of the pattern that once prevailed in the 1970s. Very soon, Everything at scale in this world will be managed by algorithms and data and there’s a need for effective platforms for ma…

An Ockham of Gatwick

The 13th century theologian and philosopher, William of Ockham, who once lived in his small Surrey village, not so very far from what is today, the wide concrete expanse of Gatwick airport is a frequently referenced source of intellectual reason. His contribution to modern culture was Ockham’s Razor, which cautions us when problem solving, that “The explanation requiring the fewest assumptions is most likely to be correct;” sound advice which constantly proves to be true.

A week further-on since Britain’s second busiest airport was bought to a complete standstill by two or perhaps two hundred different drone sightings, it is perhaps time to revisit William of Ockham’s maxim, rather than be led astray by an increasingly bizarre narrative, one which has led Surrey police up several blind alleys with little or nothing in the way of measurable results.

 Exploring the possibilities with a little help in reasoning from our medieval friar, we appear to have a choice of two different account…
A Christmas Tale

It’s pitch blackness in places along the sea wall this evening and I'm momentarily startled by a small dog with orange flashing yuletide antlers along the way. I’m the only person crazy enough to be running and I know the route well enough to negotiate it in the dark, part of my Christmas exercise regime and a good way of relieving stress.

Why stress you might ask. After all, it is Christmas Day.

True but I’ve just spent over two hours assembling the giant Playmobil ‘Pony Farm’ set when most other fathers should be asleep in front of the television.



I was warned that the Playmobil ‘Pirate Ship’ had driven some fathers to drink or suicide and now I understand why. If your eyesight isn’t perfect or if you’ve had a few drinks with your Christmas lunch then it’s a challenge best left until Boxing day but not an option if you happen to have a nine year old daughter who wants it ready to take horses by tea time.

Perhaps I should stick to technology but then, the instruc…