A wiry young man with his head shaved and wearing a tank top points a handgun straight at the camera in a disturbing YouTube video. The man wears what appears to be a wedding ring, and he gazes vacantly away from the viewer.
Though it's an odd image for an advertisement, this video isn't promoting your average company. It's from a not-so-underground Albanian hacker group that's out to make a name for themselves in the thriving
Malware is big business, and groups like the Albanian hackers are trying to cash in, using the latest Web 2.0 tools: social networking profiles, blogs, and other publicly available media and Web pages. The digital desperados are moving more and more into wide-scale advertising and brand building on public sites and networks to grow their underground trade.
But wait a minute--how can people get away with selling programs for breaking into your PC or stealing your identity? Simple:
As the malware underground grows, "it's moving away from technology towards business," says Zulfikar Ramzan, senior principal researcher with Symantec Security Response. While virus vendors are still quick to jump on the latest security vulnerability or technical trick, "the real innovations are more business and marketing," he explains.
On the face of it, public ads appear to violate the number-one rule of any illegal activity: Don't make yourself known. And it's true, says Ramzan, that "the more sophisticated guys are more quiet." But since the writers and sellers of Trojan horses and other malicious apps have no real fear of legal repercussions, they have no compelling reason to be shy.
Don Jackson, a senior research
Another video ad, this one from a Turkish group, hypes a program used to break into PCs. The group's name and logo (a stylized alien face with the Turkish crescent-and-star emblem on its forehead) play front-and-center in the program's graphical interface, and the video's speaker walks the viewer through a 5-minute-plus tutorial on using the program. More than 17,000 people have watched it.