This article is from the source 'bbc' and was first published or seen on . It will not be checked again for changes.

You can find the current article at its original source at http://news.bbc.co.uk/go/rss/-/1/hi/technology/6998068.stm

The article has changed 2 times. There is an RSS feed of changes available.

Version 0 Version 1
Internet crime 'is big business' Hi-tech crime 'is big business'
(1 day later)
Internet crime is becoming a major commercial activity, according to a report by the security firm, Symantec. Internet crime has become a major commercial activity, reveals a report by computer security company Symantec.
Its report into threats to internet security describes underworld auction sites where bank details and credit cards are on sale. The report said cyber crime had become increasingly professional and was now a multi-billion dollar industry.
Commercial software used by criminals to launch attacks on websites is also being traded, the report says. The underground economy has its own auction sites and marketplaces that sell valuable data such as credit card numbers and bank accounts.
It also warns that criminals are using trusted sites like MySpace and Facebook to launch attacks on users' computers. They also sell toolkits for novice cyber criminals who lack technical know-how to craft their own attacks.
Fake banking sites Boom times
The BBC's technology correspondent Rory Cellan-Jones said: "Until recently young hackers who spread viruses or launched attacks on computer networks were bent on mischief rather than money making." "We're seeing a definite shift in terms of commercialisation," said William Beer, Symantec's european director of security practice. "It's being used by organised crime and it's being used to launch their attacks.
However, this latest report suggests such attacks are now part of a multi-billion dollar criminal industry. "We have seen very focussed attacks that leverage very active commercial business on toolkits," he told the BBC News website.
It highlights online discussion boards where members buy and sell the kind of information that enables identity theft. Mr Beer said Symantec had seen the net's underground economy enter a new phase in the last six months as those involved in it prospered.
Our correspondent said in recent days sellers on one of these sites were offering everything from 100million email addresses to bank logins and credit card details. Even the smallest bank has enough money William Beer, Symantec One example of how it had grown could be found in the number of new malicious programs reported to Symantec. The 212,101 new threats reported during the first six months of 2007 was a 185% increase over the previous six months.
Elsewhere, phishing kits are on sale enabling buyers to set up fake banking sites to lure unsuspecting customers. The economy had rapidly become specialised and now every service a criminal needed to carry out attacks was widely available, said Mr Beer.
For instance, he said, many malicious hackers were using their technical skills to create tool kits that they then sold to those with the criminal know-how to carry out attacks.
Evidence that these were being taken up enthusiastically, he said, could be found in the fact that three phishing toolkits were behind 42% of all phishing attacks seen by Symantec in the first six months of 2007.
In addition, 86% of all phishing websites were hosted on only 30% of IP addresses known to be phishing websites, suggesting that some were cornering the market in looking after criminal sites.
More worryingly, said Mr Beer, were signs that different sections of the underground economy were starting to collaborate to improve their chances of catching people out.
Hi-tech criminals with information culled from job sites, online games or social networking sites were teaming up with phishing gangs and spammers, said Mr Beer.
The end result was well-crafted e-mail campaigns that gained a gloss of credibility by combining several different bits of data.
Often, he said, these targeted attacks were aimed at the customers of smaller financial institutions.
"Attention has gone away from the larger banks down to credit unions and small banks that do not have the people and resources to fight off the attacks," he said.
"Even the smallest bank has enough money," said Mr Beer.