Peter Simpson, manager of ThreatLab at Clearswift, warned that antivirus companies and the media have become so obsessed with the unprecedented numbers surrounding the prolific Sobig.F variant that the real dangers are going almost unnoticed.
Simpson warned that Sobig.F is the latest in a series of forays into the digital world by organised criminals looking to make a move online.
"Sobig smashed all the records in terms of pure numbers, but that's not nearly the whole story," said Simpson. "This is the sixth in a series of controlled experiments. This isn't about some kiddy writing viruses in his bedroom -- this is really a very sophisticated example of organised crime."
And he believes there may be far worse to come.
Simpson explained that the purpose of getting Sobig onto the computer is not to cause damage or purely to drive wide and rapid spread, but to gain control of machine, by downloading a Trojan and gain access to information such as bank details for the purpose of fraud. Such tactics effectively hand control of the machine over to the virus writer.
It will also enable unscrupulous marketers to disguise the source of spam by abusing victim's computers and identities.
Simpson suggested this latter factor is one of the main motivators for organised criminals, who are combining the twin threats of spam and viruses for mutual gain. Spammers have seen increased awareness and filtering eat into their bottom line and are now having to come up with more advanced ways of getting their message across.
"The real question here has to be about the motives of the virus writer," said Simpson. "This isn't just about writing a virus that will spread rapidly and break records; the motives here are very different and are clearly criminal"
"It's all about the hidden agenda," he added.
Clearswift is also warning that home users still represent a serious threat to businesses with the increase in virus activity.
With teleworking on the increase, and home security often less watertight than security within an organisation's own four walls, Simpson warned companies to be aware that home users can represent their "Achilles heel".
Talkback
It does seem clear that things will get worse no matter who is responsible ... this is one of the prices that people pay when they build a monoculture (which makes much of this so easy)
It is frightening that we have managed to build a computational monoculture ...
http://tingilinde.typepad.com/starstuff/2003/08/monocultures.html
Over the next few years, the internet will have to evolve in much the same way as the growth of the car industry was forced to.
The analogy is this...
When the first motor cars appeared, anyone could buy one; drive it almost anywhere with no safety standards in place for the driver or pedestrian. No insurance needed for either party. No vehicle safety check. No driving tests!! A new technology with no rules or laws in place to guide it has to be prepared to allow these rules & laws to grow evolve with it.
Similarly, when the net started to grow, anyone could buy a PC; go anywhere, with virtually no operating knowledge, security (virus or credit card being the obvious risks).
We want our freedom on the net while at the same time feeling secure.
Since this "new" technology is used around the globe, all nations will have to get together & fashion some kind of laws against abuse, scams, spam, viruses & other forms of internet misconduct.
It looked as if this would be something that governments would 'get around to' eventually...until the events of the past year or so.
ISP's could be legally required to provide Antivirus & Firewall facilities included in the package sold to the customer, just as car manufacturers are legally required to fit seat belts?
Both limit damage during a crash.
Something along these lines has to be invoked when you consider the past week's events where a children's hospital in Glasgow was victim to one the viruses.
Terrorists also have found a mighty friend in the internet, in so far as communication is concerned.
Similarly, organised crime and unscrupulous marketing & trading companies (and individuals) are almost as safe as houses while carrying out their dodgy & sometimes sordid 'business'.
Safe in the knowledge that, under current legislation, tracing them is almost impossible.
The words 'haystack' and 'needle' come to mind.
virus creators are a right bunch of wankers what ever the reason for it.
The article fails completely to demonstrate the source of Sobig was organised crime -- in fact, it's as plausible that Sobig and many other worms/viruses were created by AV/Security firms to boost sales.