|
|
 |
|
Viewing report
|
|
|
|
How Criminals Conceal Their Tracks (And Avoid Getting Caught)
LEXSI, April 2010, Pages: 37
In this report, we will study the latest tools and equipment used by cybercrooks to ensure their own security. These include, in particular, anonymity and encryption tools, as well as methods for destroying evidence. The amateur tools that were available at the turn of this century have paved the way to increasingly professional equipment, thereby guaranteeing criminals a high-level of security.
In our days, hackers use more and more advanced techniques to hide their activities and ensure their security. In addition to the free solutions made available by researchers to bypass censorship (like Tor for instance) hackers also resort to anonymity and encryption solutions which combine (simple and double) VPN and multiple proxy, with the help of botnets. These solutions go along with a number of precautions when exchanging via instant messaging: they use third-party data encryption modules to avoid being wiretapped by the messaging company.
The security of their workstation is ensured by several kinds of dissimulation and proof destruction tools, in case of seizure by law enforcement forces. Recent cases have actually proved them right, because, most of the times, it turns out that the law enforcement agents are unable to break AES used along with a strong password, or retrieve data after have been overwritten in a single pass. Hackers resort to all sorts of ID forgings in electronic format to subscribe to illegitimate services: domain purchase, dedicated server rental, company creation, bank account opening, etc. Whenever possible, they use virtual money systems outside of the traditional banking system, which provide complete opaqueness to the funds they transfer.
The security of their logistical means–especially malware–is ensured by different obfuscation means: data exfiltration by Tor, malware re-encryption upon request, intoxication of researchers by handing them fake data when the malware detects it is being analyzed, etc. All these methods make it difficult for the investigators to proceed. We recommend that banking institutions should identify and lock on their network, all the flows directed to anonymous services: to do so, several identification methods are possible. Studying the means implemented by the hackers provides interesting lessons in terms of encryption and secure data destruction.
Product samples
A sample for this product is available. Please Login/Register to download this sample.
Customers who bought this item also bought
Cyber Security - Global Strategic Business Report
Information Security Products & Services - Global Strategic Business Report
Security 2020: Reduce Security Risks This Decade
Encryption Technology and Information Security
World Intrusion Detection and Intrusion Prevention Systems Markets
Firewall Market Opportunities, Strategies, and Forecasts, 2004 to 2009
Assessment of Network Security Trends and Regulatory Needs
Mobile Viruses - How Real is the Threat?
Information Security Software - Global Strategic Business Report
Global Managed Security Service Providers Rollup
|
|
|
|
