Real-Time Cyber-Attack Map

← Back to Stories (view on slashdot.org)

Posted by timothy on Friday October 19, 2012 @11:51AM from the get-to-the-next-phone-booth dept.

First time accepted submitter anavictoriasaavedra writes "In October, two German computer security researchers created a map that allows you to see a picture of online cyber-attacks as they happen. The map isn't out of a techno-thriller, tracking the location of some hacker in a basement trying to steal government secrets. Instead, it's built around a worldwide project designed to study online intruders. The data comes from honeypots. When the bots go after a honeypot, however, they're really hacking into a virtual machine inside a secure computer. The attack is broadcast on the map—and the researchers behind the project have a picture of how a virus works that they can use to prevent similar attacks or prepare new defenses."

3 of 36 comments (clear)

Min score:

Reason:

Sort:

who will get the most use out of this? by hguorbray · 2012-10-19 11:58 · Score: 5, Insightful

the crackers will probably use this to test their bots and make even better bots and malware...

seems to be the way of the world

-I'm just sayin'
1. Re:who will get the most use out of this? by Baloroth · 2012-10-19 12:54 · Score: 3, Insightful
  
  The honeypot only seems to recognize worms that are already recognized by AV software. All the bot makers would have to do is test it against AV software themselves, either directly or through a scanning-upload site (or even just by checksum, as the map does). It just gives researchers more of an idea of where and with what people are infected (looks like mostly variants of Conficker from the spot checks I did). Bot makers already have all the resources this gives to test their malware against. Might serve as an e-peen boost for them to see how common their malware is, but I doubt it will serve much beyond that.
  
  --
  "None can love freedom heartily, but good men; the rest love not freedom, but license." --John Milton
Maybe a few bugs by Dereck1701 · 2012-10-19 13:08 · Score: 3, Interesting

There might be a few bugs in their mapping app, unless it is so advanced it can track oceangoing vessels. A bunch of hits on the map I am looking at are about 1,000 miles off the coast near Washington DC. I also wonder if they're going to include social attack emails at some point (I believe most reputable Webmail apps include an IP of the sender). I don't know about anyone else but at my workplace I regularly get 5 or more attempts a week to get a virus into my system by pretending to be a FedEx tracking code, or a "contract in danger" message, some of them are even rigged to look like they're from OUR It department. Luckily our spam filter catches most of them but once in a while one slips through.