PDA

Bekijk Volledige Versie : 18-jarige Marokkaan legt media in VS plat met virus



Marsipulami
27-08-05, 14:16
Verdachten gearresteerd voor internetworm die media viseerde


12:43:42

In Turkije en Marokko zijn twee verdachten aangehouden die een virus zouden hebben verspreid. De worm besmette de computersystemen van verschillende Amerikaanse media, waaronder CNN, ABC, The New York Times en het financiële persagentschap Bloomberg. Ook een aantal Belgische bedrijven werden besmet, waaronder Opel en Janssen Pharmaceutica.


De 18-jarige Marokkaan zou de code van het virus geschreven hebben en verkocht aan de Turkse verdachte. De verdachten konden aangehouden worden na samenwerking tussen de Turkse en Marokkaanse veiligheidsdiensten en de Amerikaanse FBI.
Er zijn nog geen bewijzen dat de worm gebruikt werd om persoons- of bankgegevens te stelen of voor bankfraude.

De worm maakte gebruik van een veiligheidslek in Windows 2000 en oudere versies van Windows XP. Besmette computers sloten vanzelf af. Er bestaan verschillende varianten, wat opsporing moeilijker maakte. Windows plaatste een patch op zijn website.


27/08/2005 - cnn, archief

MaRiaH
27-08-05, 14:30
boontje komt om zijn loontje..
ik haat virussen, kan me niet schelen wie ze schrijft.. opbossen die handel. :zwaai:

Marsipulami
27-08-05, 14:32
Suspects allegedly created worm that disrupted computer networks of major U.S. news organizations.

Turk, Moroccan nabbed in huge worm case
August 26, 2005: 5:17 PM EDT

WASHINGTON (CNN) - An 18-year-old Moroccan national and a 21-year-old resident of Turkey have been arrested for creating and spreading computer worms that disrupted services on computer networks of major U.S news organizations and other institutions earlier this month, the FBI announced Friday.

Farid Essebar, a Moroccan who used the screen name "Diabl0," and Atilla Ekici of Turkey, who used the moniker "Coder," were arrested in their home countries by authorities who cooperated with U.S. investigators in tracking the origins of the Mytob worm; a damaging variant, Zotob; and a third worm, RBot.

Assistant FBI Director Louis Reigel, who heads the Cyber Division, said investigators believe Essebar was the author of the codes and sold them to Ekici for financial gain. He said investigators had not determined what other financial crimes may be involved, but said there was not yet evidence of planned identity theft, bank fraud or forgery.

Authorities said they did not yet know how much Essebar had profited, nor did they yet have any estimate of financial damage caused by the attacks.

Officials said neither suspect was on any watch list, suggesting no political motivation for the computer attacks.

In a late afternoon conference call with reporters, Reigel did not rule out the involvement of others in the case and said he was confident that if others were involved in the cyber crimes, officials in Morocco and Turkey would find them.

Law enforcement authorities in the two countries are examining the suspects' relationships with other individuals to determine the nature of those links.

A second unidentified Moroccan who was initially suspected of involvement in writing the code was not arrested, Reigel said.

FBI officials said the two men are expected to be prosecuted by the governments of their home countries.

"Their cyber laws are not as advanced as those in America but the individuals will be charged, and the FBI will provide as much evidence as needed to prosecute," Reigel said.

Microsoft Senior Vice President and General Counsel Brad Smith said even if strong anti-hacking statutes aren't in place, Morocco and Turkey have consumer fraud statutes and consumer protection laws that could apply.

The FBI praised Microsoft for its cooperation in the investigation, and attributed the swift resolution of the case to strong international cooperation. Microsoft said the arrests demonstrated the value of public-private collaboration and returned praise for the FBI effort.

Smith told reporters his firm's Internet crimes unit, which actively participated in the investigation, had been able to monitor the Zotob attacks in "real time."

"We were able to derive technical information and used that to follow the electronic trail," Smith said. "We were able to dissect the worms and obtain information from that process."

Computer services of CNN, ABC News, The New York Times, the U.S. Senate, the Centers For Disease Control and Prevention, Daimler Chrysler and U.S. Immigration and Customs Enforcement were among those affected by the worm, officials said.

The FBI said the Zotob variant W32.Zotob, which caused nearly all of the damage, targeted Windows 2000 and some early XP-based computers by opening a back door that exploited the Microsoft Windows Plug and Play Buffer Overflow Vulnerability.

Smith credited improved security protections and consumer awareness for limiting the damage from attacks on Windows XP and 2000 systems.

The quick arrests of Zotob's suspected creators was cheered by industry experts.

"I'd like to see this as a trend, that legal action is taken while the event is still fresh in people's minds," said virus expert David Perry of the computer security company TrendMicro.

In the past, it has taken law enforcement months and sometimes longer to arrest and prosecute those who write and distribute Internet viruses, worms and other malicious software. And quite often, there's no arrest at all.

Part of the problem, Perry said, is that technology laws differ dramatically from country to country, and in some places laws don't even exist to make virus writing a crime.

"There's a big effort in NATO and the EC (European Commission) to promote better international cooperation," he said. "Laws are being discussed in international forums to try to normalize law, so suspects can be extradited."

The complexity of Internet exploits and the huge illicit rewards from stealing credit card numbers and other personal information makes the apprehension of virus creators an ever-growing cat-and-mouse game. Security experts say there are vast criminal networks with specialists in every aspect of a virus or worm attack.

"It's a lot like the movie industry: You have producers, you have the actors and you have the distribution network," said David Maynor of Internet Security Systems. "This network is much the same way. You have people who decide what they want to get done, they pass it to the producers who will actually make it happen, get someone to package it up and make sure it works, then the distributors whose only job is to distribute it to other people."

While this worm was not as widespread as other Internet scourges, it got a lot of attention because of the high-profile places it hit.

Computer security companies encourage users of the Windows 2000 operating system to use anti-virus and anti-spyware programs to make sure the machine is not being used as part of a "zombie network," even if there are no signs of infection.

Zotob and its RBot variants can be used to remotely instruct computers to send e-mail spam, steal personal data or attack other computers without the user's knowledge.

________________

~Panthera~
27-08-05, 14:33
Knap. :hihi:

MaRiaH
27-08-05, 14:34
Geplaatst door ~Panthera~
Knap. :hihi:

van de FBI ja :jumping:

Ins
27-08-05, 14:51
Hebben die Amerikaanse media eigenlijk dubbel en dik verdiend.

MaRiaH
27-08-05, 14:54
Geplaatst door Ins
Hebben die Amerikaanse media eigenlijk dubbel en dik verdiend.

Misschien..

maar niet via een virus.
straks zijn we zelf ook die dupe door die Kl*te wormen. :fpuh:

~Panthera~
27-08-05, 15:01
Geplaatst door MaRiaH
Misschien..

maar niet via een virus.
straks zijn we zelf ook die dupe door die Kl*te wormen. :fpuh:

Zijn we toch al. :hihi:

Wide-O
27-08-05, 15:07
Geplaatst door MaRiaH
straks zijn we zelf ook die dupe door die Kl*te wormen. :fpuh:

Nou nou, niet zo schelden op de US media :ego:

MaRiaH
27-08-05, 15:08
Geplaatst door ~Panthera~
Zijn we toch al. :hihi:

worm................ :terrorist

MaRiaH
27-08-05, 15:09
Geplaatst door Wide-O
Nou nou, niet zo schelden op de US media :ego:

:hihi: hij is leuk..

Imperatrice
27-08-05, 15:33
Op een of ander manier denk ik niet dat deze Marokkaan een mooie baan-aanbod krijgt van een computerbedrijf, zoals de jonge Duitse virus-verspreider :moe:




En zelfs ik heb geprofiteerd van de k*tvirussen die die Duitser had verspreid :moe:

Imperatrice
27-08-05, 16:10
Geplaatst door Ronald36
Ahhh zieluggg... :moe:


f*ck you, bitch :moe:
Moet ik lachen ofzo?

Imperatrice
27-08-05, 16:15
Geplaatst door Ronald36
tsss

houd dat ge-'tsss' maar bij je.
Ga maar eens voor de verandering normaal prikken