Gone Rogue: An Analysis of Rogue Security Software Campaigns

Marco Cova; Corrado Leita; Olivier Thonnard; Angelos D. Keromytis; Marc Dacier

Gone Rogue: An Analysis of Rogue Security Software Campaigns
Cova, Marco
Leita, Corrado
Thonnard, Olivier
Keromytis, Angelos D.
Dacier, Marc
Computer Science
Persistent URL:
Book/Journal Title:
Proceedings: 2009 European Conference on Computer Network Defense: EC2ND 2009: 9-10 November 2009, Milano, Italy
IEEE Computer Society
Publisher Location:
Los Alamitos, Calif.
In the past few years, Internet miscreants have developed a number of techniques to defraud and make a hefty profit out of their unsuspecting victims. A troubling, recent example of this trend is cyber-criminals distributing rogue security software, that is malicious programs that,by pretending to be legitimate security tools (e.g., anti-virus or anti-spyware), deceive users into paying a substantial amount of money in exchange for little or no protection.While the technical and economical aspects of rogue security software (e.g., its distribution and monetization mechanisms) are relatively well-understood, much less is known about the campaigns through which this type of malware is distributed, that is what are the underlying techniques and coordinated efforts employed by cyber-criminals to spread their malware.In this paper, we present the techniques we used to analyze rogue security software campaigns, with an emphasis on the infrastructure employed in the campaign and the life-cycle of the clients that they infect.
Computer science
Publisher DOI:
Item views
text | xml
Suggested Citation:
Marco Cova, Corrado Leita, Olivier Thonnard, Angelos D. Keromytis, Marc Dacier, , Gone Rogue: An Analysis of Rogue Security Software Campaigns, Columbia University Academic Commons, .

Columbia University Libraries | Policies | FAQ