Virus Writers - The Enemy Within 380
Slob Nerd writes "An interesting read from todays Observer "He's 21, he's got dreadlocks, likes punk bands... and his hobby could wreck your computer in seconds. Clive Thompson infiltrates the secret world of the virus writers who see their work as art - while others fear that it is cyber-terrorism.""
endbreeding (Score:1, Interesting)
It's where the family tree doesn't spread out,
but the ends of the branches meet up.
Anyone seen a good written virus? (Score:5, Interesting)
While some may imply in their posts, that virus writers are technically skilled, I've yet to see a single example of beeing better than the avarage bad programmer...
Complete Bullshit (Score:5, Interesting)
Ok fine, what if someday, a student doing research in microbiology decides, just for the sake or fine arts, I'll release a mutant plague bacteria...
Re:My Hero (Score:5, Interesting)
I'm always skeptical of stories like this. Everytime there was a story where I knew the people and facts directly, the story was usually a mish-mash mixed or invented to sex up the story.
Just an idea! (Score:4, Interesting)
Re:Virus Writers (Score:5, Interesting)
Like the elders say it takes 10 years to a three grow but only 10 minutos to take it down. It's the same with computer virus.
Re:Hmmm (Score:3, Interesting)
From the all-mouth-and-no-meat department (Score:5, Interesting)
Or else installing DDOS software aimed at Spamhaus servers, or leaving backdoors open for same.
So. Art: Check. Vandalism: Check. Profit Motive: Check. Insubstantial "infiltration" by journalist: Check.
Ferinstance
http://yro.slashdot.org/article.pl?sid=03/12/03/1
- Oops. There goes Spamhaus
http://securityresponse.symantec.com/ [symantec.com]
- most of this week's crop install backdoors.
http://www.groklaw.net/article.php?story=20040221
- Your IP Addy for sale to a spam-merchant near you...
Terrorism (Score:3, Interesting)
Common virus-writers are more like random violence, they do not use to pursue economical or political agendas, more usually want recognition inside their own community.
I, for one, am fed up with this ciber-terrorists media propaganda.
Embellishment (Score:5, Interesting)
That's usually the case with any subject! Every movie, documentary, or article that I've seen or read and have had personal experience with has been a load of bunk. I've been interviewed for numerous newspaper and magazine articles and they very rarely use any of my quotes in context. They'll usually intentionally remove the context to twist words to mean whatever agenda they're trying to push.
My personal experiences with the media have basically ruined my ability to enjoy anything anymore. Since I know for a fact that virtually every story I've contributed to has been embellished by the authors to increase its entertainment value, I assume that any story that's been done about a subject I'm not personally familiar with has been tainted as well. And, most of the time, I'm correct. A simple five minute Google or encyclopedic search on the subject gives me more accurate data than the story that I'm following up on.
Re:MOD PARENT +1 INSIGHTFUL (Score:4, Interesting)
It appears to me that overcoming human nature requires more than education.
Re:Anyone seen a good written virus? (Score:0, Interesting)
Yes, I've seen good written virus. Back in the good old Amiga days, there were several viruses with codemorphing etc.
Viruses serve a purpose (Score:1, Interesting)
Re:Embellishment (Score:5, Interesting)
My mistake...I should have qualified my post with a "Virtually every..." instead of simply saying "every...". I'm just bitter about constantly getting misquoted. The first misquote of my career goes back to 1996 when an MacWeek author writing a Web graphics piece misquoted me as saying that JPEG is a lossless compression when I explicitly told him in both a phone and e-mail interview it was lossy.
But I'm not bitter...
Comment removed (Score:5, Interesting)
Re:Some other hobbies... (Score:5, Interesting)
Re:My Hero (Score:3, Interesting)
Re:Embellishment (Score:5, Interesting)
I wonder if that reporter was Clive in his early years?
The actual story was that 4 teenagers got busted by Bell-cops for using their Applecat modems to phreak. Woo!
Virus Conspiracy (Score:3, Interesting)
Someone needs to do some serious research and see how many came out of Norton Lab.
It's easy to blame some kid playing a guitar in his bedroom. It's another thing to hire a lawyer and blame virus scan companies.
Why don't mailers auto-zip and block executables? (Score:5, Interesting)
Sure, this is old hat to slashdotters, but I think it would behoove all email client writers to do this by default as MS does now. Now, that leaves us with macro word/excel viruses, other exploits, and the zip files themselves. The first two can be taken care of by a competent virus scanner or system patching and the latter forces the user to open the zip archive thus revealing the true extension (most compression utilities do this) and copies the file(s) to some location thus giving the virus scanner more of a chance to check the thing for viruses.
Its far from a perfect solution, but it will make people sensitive to file extensions and file types. It will also save disk space and bandwidth by compressing attachments (or even the message itself). Added functionality can be added like signed zip archives, AV hooks into zip programs, etc. Heck, the zip format already provides a cross-platform encryption scheme. Sure its not 3DES/RSA or anything, but it sure beats nothing (especially for those worried about sniffing).
This is essentially the setup many of the companies I work with have. You get your pdf, doc, xls, etc but anything executable is either deleted or quarantined. I don't see why email clients written for residential customers can't do the same.
Data loss isn't even an issue, the worst case scenario is asking the guy who sent you that
This can be done in three steps:
1. Implement auto-zipping. Geeks and security sensitive people will probably enable this by default. Or it should be default with newer version of mailers.
2. Once a significant amount of traffic is in the zip format set your mailer to reject all executables. It also could auto-remail the person sending you executables. (this may be exploited by spammers looking for live email addresses).
3. Watch zip vendors work closer with AV vendors to provide better protection from viruses in zip archives.
Re:My Hero (Score:2, Interesting)
http://www.sophos.com.au/virusinfo/articles/gig
Like many of the smarter vxers, she never released a virus into the ecosystem where it would thrive.
If it were the US, she'd
a) be 100% protected by the 1st amendment.
b) be banged up for being a terrorist instead.
My inbox has dozens of viruses dumped into it every day, which completely and totally pisses me off. However, I'd still shake the hand of the writers of some of the cleverer viruses, I bear them no grudge; they're simply filling a niche created by incompetant programmers at microsoft.
YAW.
Re:My Hero (Score:5, Interesting)
Googling reveals that this trend in helping BillG cover up the fact that its his OS, not computers, that are virus laden is quite widespread. Search for "Computer Virus" and you'll get around 1.5 million hits; "Windows Virus", by contrast only turns up around 35 thousand hits.
We really do need to work to spread the meme that its not a computer virus, its a Windows virus. Make more people aware of the fact that its a Windows problem, not a computer problem, and it does two things: firstly it might make them consider alternatives to Windows, and secondly if they know its a Windows specific problem they might try and pressure MS into making Windows more secure.
Re:My Hero (Score:2, Interesting)
How is the exploitation of incompetence in any way clever?
You don't become a hero by beating up on those weaker than yourself.
Re:Deftones aren't a punk band (Score:1, Interesting)
I fail to see how - no matter how much you tilt your head and squint your eyes - virii can be taken for a misspelling of viruses. Please explain. Everyone else admits that people who use 'virii' meant to spell it that way. Which means they meant to differentiate it from the accepted use of the word virus (that is, from a biological virus).
Yes, that would be true if it was nothing more than a common spelling mistake. However many people - myself included - happen to like it for one reason or another and intentionally don't use the word 'viruses'.
I am fully aware what hypocrisy is, and I also believe it would be hypocritical of you to rubbish neologisms that you don't like whilst giving the reason that they're badly spelled, all the while using words which are just as new to the English language without a second thought.
Regards,
ithika.
Make posting the code for a virus illegal. (Score:2, Interesting)
Yes, virus writers are rather skilled compared to their counterparts script kiddies (and even worse click kiddies). I don't care how skilled they are, they can put their talent to other things.
The art behind virus writting is make it do good things in a few lines. Put that talent to work on opensource software. Imangine if some of these people got together and worked on the 2.6 kernel for linux. Maybe it would have been out 6 months earlier or it may have some more advanced features.
There are many things they can do, but the fact is they should not write viruses or even post the code/instructions/tools for making viruses anywhere.
IMHO
~ryan
Re:Virus Conspiracy (Score:3, Interesting)
While I don't *know* of any such activities by AV companies, this interview may well be the origin of such rumours -- it wasn't exactly the sort of thing as to inspire consumer confidence!
Someone here on