Newsroom
In The News
How digital ‘drifters,’ eager to turn an easy profit online, fuel the malware marketplace
New research presented during Black Hat 2021 in Las Vegas on Wednesday reveals the important role of amateur, and amateurish, players in sustaining the cybercrime ecosystem.
The cybercrime underground is often portrayed as driven by a small number of highly motivated and capable actors with criminal intent — bot herders, ransomware masterminds and spy chiefs. But new research suggests it is sustained by a huge penumbra of individuals simply trying to earn a living off the internet — a portion of whom over time drift into criminal activity.
“What we conclude from our analysis is that there is a large informal workforce evolving at the periphery of the malware industry that is necessary to its operation,” Masarah Paquet-Clouston, a security researcher for GoSecure, told a virtual session at the Black Hat security conference in Las Vegas Wednesday.
She compared these “drifters,” moving from the informal economy to the cybercrime ecosystem, to the street level dealers and enforcers — often drug addicts themselves — who make the operations of transnational drug cartels possible. “They’re not the masterminds behind … the cartels. But if we take them off the streets, maybe we can tackle the [drug] problem differently,” she said.
Researchers turn the spotlight on the hidden workers of the cybercrime world
Phishing schemes, malware campaigns and other operations involve an array of workers beyond the criminal masterminds. Could giving them better opportunities for legitimate work help cut crime?
Security researchers have put the spotlight on a little-known but growing group of people who make up a significant part of the cyber-criminal ecosystem, even though some of them may not even be aware that they’re actually taking part in illegal activities.
A collaborative research project by Czech Technical University in Prague, plus cybersecurity companies GoSecure and SecureWorks, analyzed the activities of people on the fringes of cybercrime, those behind projects like building the websites that end up being used for phishing attacks, affiliate schemes to drive traffic towards compromised or fake websites or writing the code that ends up in malware.
The people behind these projects are doing it because it’s an easy way to make money. But by doing this work, they’re laying the foundations for cyber criminals to carry out malicious campaigns
Cybercrime is full of nine-to-fivers, short on masterminds
Think of a cybercriminal. Let’s call the cybercriminal Kelsey.
Does Kelsey think about being a criminal? Does Kelsey think it’s cool? Does Kelsey have a novelty license plate that says HACK CAR?
Now think about a clerk at a grocery store or whoever it is who writes greeting cards, or someone else with an average job. Let’s call the normal worker Alex. Is the clerk in it for the love of the groceries? Does the greeting card writer genuinely care whose birthday it is? Is Alex more interested in what the job is or is Alex just showing up to work to get a paycheck?
Cybercrime is not all Kelsey. Cybercrime is mostly Alex. At least, that is the finding of a research team from GoSecure, Secureworks, the Czech Technical University in Prague and Cisco.
Press Releases
CounterTack Platform Achieves Outstanding Results in ICSA Labs Advanced Threat Defense Certification Testing
CounterTack+GoSecure successfully completed Advanced Threat Defense testing by ICSA Labs, an independent division of Verizon. The results far surpassed detection thresholds required to attain ICSA Labs advanced threat defense certification as well as comparative results from AV detection on VirusTotal and from threat feeds. What is even more noteworthy is that the CounterTack’s Platform was able to achieve these results with just the Behavioral Detection capability, while many other solutions apply a multi-stack or multi-component approach that typically results in a more expensive offering.
CounterTack+GoSecure Announce 30-Day Free Trial for Predictive EPP and Advanced Mitigation Services
CounterTack+GoSecure announces a 30-day free trial of Predictive EPP and Advanced Mitigation Services. Security Teams can experience firsthand the power and benefits of Proactive Threat Management. In June 2018, CounterTack, the leading provider of Predictive Endpoint Security acquired GoSecure, the innovator in Advanced Threat Mitigation Services. Our combined mission is to deliver proactive threat management to protect sensitive data and ensure uninterrupted business operations for our customers.
CounterTack+GoSecure Endpoint Security Delivers New Innovations
CounterTack+GoSecure, the leading provider of Predictive Endpoint Security Platform and MDR Services for the enterprise, announces a major new release of its open and flexible Endpoint Protection Platform (EPP). The new features expand the Platform’s Predictive Analytical capabilities that interpret threat data in simple English enabling proactive response and mitigation.
TPx Communications and CounterTack Partner to Deliver Best-in-Class Managed Endpoint Security Services
CounterTack announces a partnership with TPx, a premier nationwide managed services provider. CounterTack has established itself as the only true behavior-based predictive endpoint solution with in-memory analysis, multi-tenancy, and scalability that can manage hundreds of thousands of endpoints in a single deployment.
CounterTack Acquires GoSecure, Managed Detection and Response Leader
CounterTack announces the acquisition of GoSecure, Inc., a cybersecurity Managed Detection and Response Provider. CounterTack has established itself as the only true behavior-based predictive endpoint solution with in-memory analysis, multi-tenancy, and scalability that can manage hundreds of thousands of endpoints in a single deployment. As a market leader in Endpoint Detection and Response (EDR) and Next Gen Antivirus (NGAV), CounterTack’s acquisition expands its previous partnership with GoSecure to scale a best-in- class MDR Platform as a Service for the company’s domestic and international customers.
