Security firm Imperva has published its hacker intelligence report for October, which is the company’s second report focusing on the activity of one of the Web’s largest hacking forums. In addition to training resources, such as tutorials and scripts, Imperva also detected a market for social networking fraud.
“By examining what information hackers seek out or share in these forums, we can better understand where they are focusing their efforts,” said Amichai Shulman, Imperva’s CTO.
Not surprising, hot topics being discussed included DDoS and SQL Injection attacks. According to Imperva’s analysis, DDoS (19%) and SQL injection (19%) were the most frequently discussed attack methods. Training was another hot topic, as education accounted for nearly a third of the discussions. Of the total conversations analyzed, roughly 28% were related to beginner hacking and hacker training, while another five percent related to hacking tutorials.
When it comes to sales and marketing, the forum had a booming economy focuses on social media fraud. There were several accounts buying and selling ‘Likes’ on Facebook for posts and pages, as well as followers on Twitter. The services separated themselves from the competition by pitching accounts that “look real” or have “legit bios.”
For example, one account was offering 200,000 Twitter followers for as little as $140 via PayPal, which were a mix of “real and fake accounts, all with avatars!”
Other services were offing Facebook “Likes,” where as little as $4 would earn 100 of them; or $100 would earn 5,000. Again, the seller noted that all accounts that liked the page or post would look “real and legit.”
“Consumers and enterprises that use social media need to better recognize the security risks posed by these platforms. While privacy concerns often get most of the headlines, security should be just as much of a concern. Hackers have developed a profitable industry, using services and tools to hijack accounts, dupe users, and spread malware,” the report notes.
The full Hacker Intelligence report is available here in PDF format.
Related: Here’s What $50 Can Get You In The Cybercrime Underground
More from Steve Ragan
- Anonymous Claims Attack on IP Surveillance Firm Brickcom, Leaks Customer Data
- Workers Don’t Trust Employers with Personal Data: Survey
- Root SSH Key Compromised in Emergency Alerting Systems
- Morningstar Data Breach Impacted 184,000 Clients
- Microsoft to Patch Seven Flaws in July’s Patch Tuesday
- OpenX Addresses New Security Flaws with Latest Update
- Ubisoft Breached: Users Urged to Change Passwords
- Anonymous Targets Anti-Anonymity B2B Firm Relead.com
Latest News
- Critical Vulnerability Impacts Over 120 Lexmark Printers
- BIND Updates Patch High-Severity, Remotely Exploitable DoS Flaws
- Industry Reactions to Hive Ransomware Takedown: Feedback Friday
- Microsoft Urges Customers to Patch Exchange Servers
- Iranian APT Leaks Data From Saudi Arabia Government Under New Persona
- US Reiterates $10 Million Reward Offer After Disruption of Hive Ransomware
- Cyberattacks Target Websites of German Airports, Admin
- US Infiltrates Big Ransomware Gang: ‘We Hacked the Hackers’
