Related Posts Plugin for WordPress, Blogger...

Signature bots chats Sony sends stolen data to request

Posted by VdoCity Monday, September 19, 2011

Hackers have proven they can break almost any computer network, Sony for Citigroup. Then face another challenge: download virtual loot.
http://consolepress.com/main/wp-content/uploads/2011/01/SLR-Sony-Hackers-Beware-640x250.jpg
They often take the theft of credit card numbers, online banking credentials, e-mail connections, and Social Security numbers to an extensive network of underground chat rooms and invitation-only forums, where data are bought and sold. Police investigators hoping to catch the crooks are hiding there too, but with the increasing incidents of piracy, the problem is too big for the police, by traditional means.

Enter the informant robot. A security company in Texas, CSIdentity has created artificial intelligence software capable of posing as a hacker and good for nothing attractive groundwater wells in the forums. It seeks stolen data - a hacker with the hope of about 1. 000 numbers credit card offer dozens of free to prove they are real - and send them back to researchers in the flesh.
Notifying Companies

CSIdentity sells the data it collects to banks, cyber security companies and others who have an interest in quickly discover which companies, and credit card accounts have been compromised.

"Very often we are able to notify customers that something is wrong before your bank" says Scott Mitic, chief executive of TrustedID, a company identity theft protection that purchases CSIdentity data .

For the design of chatbots, CSIdentity of 10 people, team of analysts to study the dialog box in hacker chat rooms looking for patterns in interactions, says Joe Ross, president of the company.

The hacker jargon is full of jargon: A recently stolen credit card is "cool" and "fullz" is a credit card registration, which includes personal data of the victim and three-digit card security code along with the number. To continue the fast-moving conversation, the informants used virtual computing technique known as fuzzy pattern recognition, which helps the robots to make sense of terms and phrases that can be expressed in different ways. (When a hacker threatens to "doss that server," the machine knows it means a denial of service attack, a common way to close websites.)

Ross says that hunting has become a game of cat and mouse. Hackers know to look for dialogue algorithm seems more human, and tricks used to discover the robots. Common one is that members of the chat room to get out and meet again in a different room. If you have trouble understanding chatbots orders, which will end up in an empty room.
Burning midnight oil

The bots are aided by the fact that many hackers are native English speakers and more forgiving of a strange statement that sounds here and there, says Ross. And when you get confused, the robots can always fall back into a dirty word in these forums plagued by profanity.

"Someone is going to make a comment and the robot responds with an insult," says Ross.

While working, the bots send stolen data catalogs and pieces of conversations CSIdentity team that often works late at night, when chat rooms are most active. The fridge is stocked with company Red Bull to help humans to keep up.

The robots are not very useful when dealing with sensitive secrets bites as they tried to enter the members only forums by hackers to organized crime gangs in Eastern Europe, says Ross.

However, you can help the problem of data loss a little more manageable, especially since the scale grows. In a single week in August, CSIdentity bots uncovered 419,000 new records for sale. The data consisted primarily of accounts and e-mail access passwords, but also 15,000 credit card numbers and Social Security numbers 168.

Among the companies involved are ShoWorks, an event manager based in Spokane, Washington CSIdentity no effect on the data collected and only sells it, so Cathy Doerr, president of the company, says he learned of the break in a network only when federal investigators called in late August.

"It has created a disaster, and have spent the last two weeks trying to clean up," he says. CSIdentity bots not have prevented the theft, but that might have helped discover Doerr before.

"This happens every day," says Ross. "The scary thing is that this is just the tip of the iceberg."

0 comments

Post a Comment