Russian hackers a global menace
Posted on Monday, January 5, 2009
Chicago Tribune/DANIIL ZINCHENKO Nikita Kislitsyn, who edits a magazine for budding Russian hackers, says the crimes can pay big in Moscow.
MOSCOW - Not long ago, the simple, anonymous thrill of exposing chinks in American software was enough of a payoff for a Russian hacker.
Today it's cash. And almost all the targets are in the United States and Europe, where Russia's notorious hackers pilfer online bank accounts, swipe Social Security numbers, steal credit card data, and peek at email log-ins and passwords as part of what some estimate to be a $100 billion-a-year global cybercrime business.
And when it's not money that drives Russian hackers, it's politics - with the aim of accessing or disabling the computers, Web sites and security systems of governments opposed to Russian interests. That may have been the motive behind a recent attack on Pentagon computers.
A new generation of Russian hacker is behind America's latest criminal scourge. Young, intelligent and wealthy enough to zip down Moscow's boulevards in shiny BMWs, they make their money in cubbyholes that police thus far have found impossible to ferret out.
From behind the partition of anonymous online hacking forums, they boast about why they use their programming savvy to spam and steal, mostly from the West.
"Why should I take a regular job after graduating and exert myself to earn just $2,000 a month, rather than grab this chance to make money?" says a Russian hacker on an online forum that specializes in credit card fraud. "It makes sense to get as much as you can, as quickly as possible, rather than wasting time working for someone else."
Cybercrime, by some estimates, has outpaced the amount of illicit cash raked in by global drug trafficking. Hackers from Russia and China are among the chief culprits, and the threat they pose now extends far beyond spam, identity theft and bank heists.
Besides the recent attack on computers at the U.S. Defense Department, which may have originated in Russia, according to military leaders in Washington, Russian hackers also are believed to be behind highly coordinated attacks that brought down government Web sites in Estonia in 2007 and in U.S.-allied Georgia when war broke out between Russian and Georgian forces in August.
They're even suspected of hacking into the computer systems of Barack Obama and John McCain during the presidential campaign; technical experts hired by Obama's campaign suspected the attacks may have come from Russia or China, according to a report in Newsweek magazine.
So far there has been no evidence of a link between the Russian government and any of the attacks on American, Georgian and Estonian Web sites and computers. Russian authorities denied any involvement in the Georgian and Estonian attacks, and they recently said that speculation about a Russian link to the attack on U.S. Defense Department computers was "groundless" and "irresponsible."
Nevertheless, the need to increase security of American cyberspace is being discussed with greater urgency in Washington. Last month, a commission on computer security delivered a report to Congress calling for the creation of a new White House office that would gird the United States against attacks from hackers and foreign governments.
According to the commission, "unknown foreign entities" in 2007 hacked computers at the Departments of Defense, Homeland Security and Commerce, as well as NASA. Hackers broke into Defense Secretary Robert Gates' unclassified e-mail, and they probe Defense Department computers "hundreds of thousands of times each day," said the commission, a panel of leading government and computer industry experts.
A senior State Department official told the commission that the department had lost thousands of gigabytes of data due to computer attacks. Hacking attacks compromising intellectual property have cost U.S. companies billions of dollars, the report stated.
ORGANIZED CRIME
After the Soviet collapse in 1991, Russian hackers were primarily motivated by mischief. They crafted viruses and worms simply for the delight of revealing weaknesses in security systems and software.
"Back then, it was simple hooliganism," said Vladimir Dubrovin, a hacker in the late 1990s and now a Russian computer security expert.
Today, however, most hackers in Russia are in it strictly for the money. Cybercrime gangs approach computer programming graduates from Moscow's technical universities with offers of making sums of $5,000 to $7,000 a month, a far cry from Russia's average monthly salary of $640, said Nikita Kislitsyn, editor of Hacker, a glossy Russian magazine with how-to information for budding hackers.
Yevgeny Kaspersky, chief executive of Moscow-based Kaspersky Lab, one of the world's leading computer security firms, said Russian hacking flourishes as "a cybercriminal ecosystem" .
To ply online bank accounts, Russian hackers rely on viruses that record keystrokes as customers type log-ins and passwords. Russian-made viruses are believed to be behind several major online heists, including the theft of $1 million from Nordea Bank in Sweden and $6 million from banks in the United States and Europe, all in 2007.
The huge amount of money cybercrime generates has created a vast underworld market that so far has proved to be virtually impregnable by Russian police. Viruses and other types of so-called "malware" are bought and sold for as much as $15,000, Kislitsyn says. Rogue Internet service providers charge cybercriminals $1,000 a month for police-proof server access.
Botnets relied on for cybercrime can also be used to lash out at political enemies, computer security experts say. Most analysts agree that criminal botnets were used by Russian hackers to shut down Estonian government and banking Web sites after the small Baltic republic angered Russians by moving a Soviet war memorial from downtown Tallinn in 2007.
In countries such as Russia and China, where criminal botnets are highly developed, such a resource could evolve into a potent weapon, experts say.
"The Internet can now be used to attack small countries," Kaspersky said. "There are Russian and Chinese hackers that have the power to do that."
Russian police have cybercrime divisions, but arrests of major suspects are rare.
FEEDBACK:
Something to say about this topic? Submit a Letter to the Editor online
