News
Brazilian charged in botnet scheme, will be extradited to US
A Brazilian man has been charged for trying to broker a deal to rent out a botnet in order to send spam, according to U.S. authorities
By Jeremy Kirk, IDG News Service (London Bureau)
August 25, 2008 — CSO —
A Brazilian man has been charged for trying to rent out a botnet that would be used to send spam, U.S. authorities said Thursday.
Leni de Abreu Neto, 35, of Taubate, Brazil, was charged with one count of conspiracy to cause damage to computers worldwide after being indicted by a federal grand jury in the U.S. District Court for the Eastern District of Louisiana.
Neto was arrested in the Netherlands on July 29 by the Dutch High-Tech Crime Unit, with assistance from the U.S. Federal Bureau of Investigation. The U.S. is seeking his extradition.
Neto was arrested along with a 19-year-old Dutch man, Nordin Nasiri, and Nasiri's 16-year-old brother. Nordin Nasiri, of Sneek, Netherlands, had built a network of some 100,000 hacked computers.
Such networks, known as botnets, are valuable for cybercriminals, who can route their hacking through the compromised computers, making it difficult for investigators to follow. The controlled PCs are used to send spam or perform other malicious actions such as a denial-of-service attack, which can cripple a Web site.
Between May and June, Neto agreed with Nasiri to act as a mediator to rent out the botnet to another party for $37,290), according to the indictment. Neto expected the third paty to use the botnet to send spam.
The botnet, called "Shadow" by Nasiri, was spread entirely through social engineering. The malicious code was distributed on Microsoft's Windows Live Messenger instant messaging network.
Once on a PC, the malicious code would send instant messages to people on the victim's contact list. The messages contained a link to what appeared to be a harmless file but could actually gave Nasiri control over the PC.
If convicted Neto faces up to five years in prison plus three years of probation. He could also be fined as much as $250,000 or more depending on the losses from victims or his own profits from the scheme.
Nasiri will be prosecuted by Dutch authorities.
Data Center Directions Virtual Conference
Attend this free, 100% online event exploring tools and techniques for making your data center deliver for today and tomorrow.
The Surest Path to Effective and Efficient Compliance
In this webcast, we explore why and how — with best practices, practical tips and solutions that work — to ease your compliance challenge.
- Make Compliance Regulations an Ally Not an Enemy
- Protecting Sensitive and Confidential Information with Endpoint Security
- Endpoint Security: Compliance at the Endpoint
- Revolutionizing Endpoint Security with a Single Agent
- Data Protection: Challenges for the Traveling User
- View Gartner Video: Best Practices on Web Application Security
- Unlock the Power of Device ID to Combat Online Fraud and Abuse
- Network Security Services: Outsourcing considerations for maximizing network protection
- File Integrity Monitoring: Secure Your Virtual and Physical IT Environments
- Configuration Assessment: Choosing the Right Solution
- IT Service Management: Metrics That Matter
- Effective Security with a Continuous Approach to ISO 27001
Get instant notifications when whitepapers, webcasts and case studies are added
to our library. Sign up for a Resource Alert now!
CSO Corporate Partners
CSO Executive Seminar on Application Security
-
January 29, 2009New York, New YorkRegister now »
-
February 25, 2009San Francisco, CaliforniaRegister now »
(ISC)2 members can earn up to 6 CPE Credits
Reference priority code ONLINE and attend this program as our guest — that's a $295 savings!
