Slashdot Mirror

← Back to Stories (view on slashdot.org)

Torrent Sites Earned $70M After Dropping Malware On Visitors (softpedia.com)

Posted by Soulskill on from the all-about-the-benjamins dept.

jones_supa writes: One in three torrent sites is spreading malware, claims a recent joint report (PDF) from Digital Citizens Alliance and RiskIQ, which compiled data from over 800 sites. Most of the time, the sites expose visitors to drive-by attacks that silently download malicious files on computers without any user interaction. These types of attacks are usually carried out through malvertising campaigns. It turns out that this is actually a good business for the operators of the pirate sites: depending on traffic, they can make between $200 and $5,000 per day. In total it is estimated that this type of covert agreement between malware distributors and pirate site operators has pocketed the latter about $70 million per year.

18 of 91 comments (clear)

  1. Never trust torrent sites by Flavianoep · · Score: 2

    Now, there is a reason not to download pirated media. If only most of malware on internet were on illegal torrent sites!

    --
    Linux is for people who don't mind RTFM.
    1. Re:Never trust torrent sites by Anonymous Coward · · Score: 3, Insightful

      Just remember that $70M is calculated the same was the DEA calculates drug bust values and the RIAA/MPAA calculate piracy losses.

    2. Re:Never trust torrent sites by NotDrWho · · Score: 5, Insightful

      I would download something from the Pirate Bay any day over a site like CNET's download.com. At least with Pirate Bay, there is a CHANCE a program doesn't come with malware.

      --
      SJW's don't eliminate discrimination. They just expropriate it for themselves.
    3. Re:Never trust torrent sites by operagost · · Score: 4, Interesting

      ^ This. "Legitimate" sites inject malware into downloads and somehow escape the FTC year after year.

      --

      Gamingmuseum.com: Give your 3D accelerator a rest.
    4. Re:Never trust torrent sites by fisted · · Score: 2

      Or torrent them, and verify the hashes.

      --
      CLI paste? paste.pr0.tips!
    5. Re:Never trust torrent sites by edtice1559 · · Score: 2

      The problem with that is the torrent site you use may have infected your machine with malware. That malware could frustrate your attempt to verify the signature. Torrent is a good solution if the tracker is hosted by the distributor. Not so much if you have to poke in dark corners of the interwebs. Of course you can move the download to another machine to verify the signature. There are (unfortunately) not enough people downloading Linux ISOs to even get better performance by torrenting them. :(

    6. Re:Never trust torrent sites by mlts · · Score: 2

      I have had a VM browser get nailed on legit sites as well. Malvertising has replaced spam as the #1 issue plaguing the Net.

      How are torrent sites that different from "top tier" websites that have had their ad servers dish out malware? Either way, it is wise to browse in a virtual machine, sandbox, or both.

      In fact, given a choice of a download from a torrent site versus a popular software download site, I'll take the torrent. The torrent has anti-tampering resistance by itself (assuming the torrent file wasn't changed), and I can compare the hash of the download with the torrent manifest, and hashes stored on VirusTotal for additional assurance. Plus, I can have my NAS download and seed the torrent so it isn't taking up CPU and I/O on my main computer.

      In fact, this is a lot easier on the Net as a whole doing this, (last download was Ubuntu Server for testing obnam, attic, borgbackup, and zbackup.) Faster too.

  2. Okay, so... by U2xhc2hkb3QgU3Vja3M · · Score: 3, Insightful

    The websites send files to auto-download and it fills up my download folder a bit.

    If you're computer-saavy enough to use torrents, you should be smart enough to disable the "automatically run downloaded files" feature of your browser.

    Actually, one thing that really bugs me is those damn websites that force a file download when I try to view a PDF file inside my browser.

    1. Re:Okay, so... by Anonymous Coward · · Score: 3, Interesting

      I smell scaremongering rather than actual facts. There are no examples or case studies, just random numbers extrapolated to create a narrative and big money numbers.

      What I'm surprised about is no "tech" site picking up the mining code running in hidden iframes on websites. It's bad enough with auto-playing videos for "affiliates", but now sites are trying to steal CPU cycles on our machines so they can create a billionth of a bitcoin every other year.

  3. Page one: "Digital Bait" by pegr · · Score: 3, Insightful

    "How Content Theft Sites and Malware Are Exploited By Cybercriminals to Hack Into Internet Users' Computers and Personal Data"

    And you've blown any credibility you may have had.

  4. Shocking Company funded by Movie Companies... by ZiakII · · Score: 4, Insightful

    Shocking Company funded by movie companies gives reason not to use torrents.

    1. Re: Shocking Company funded by Movie Companies... by WarJolt · · Score: 2

      Once Torrent is served it is immutable. You cannot add things to it. The torrent could be infected during creation, but what really works is infecting the site that you use to download the torrent file. The easiest method is to trick users into thinking they need a browser plugin or something.

  5. Guiding force of the internet. by blueshift_1 · · Score: 3, Insightful

    Again it falls under - if you're not paying for it, then you're the product. From facebook to bit torrent, this is a guiding force of the internet.

  6. Who is the Digital Citizens Alliance? by PopeRatzo · · Score: 4, Informative

    This report is from something called the "Digital Citizens Alliance". Sounds good, right? Sounds like a bunch of pro-freedom net citizens protecting all of our rights, yes?

    Would it surprise you to learn that the DCA is a lobbying group involved in trying to get Google to take down search results? Here's a sentence from their materials:

    Creators aren't the only ones harmed by content theft...

    Does anyone else smell an agenda here?

    --
    You are welcome on my lawn.
  7. And this is why I will never trust ads ... by gstoddart · · Score: 3, Interesting

    These types of attacks account for 45% of all malware infections and are usually carried out through infected ads in so-called malvertising campaigns.

    And this shit is why I will never, ever be willing to treat ads as anything but malicious and dangerous affronts to my privacy and security.

    I lump all analytics and ads into the same bucket: evil greedy bastards who I will never trust, never allow to run scripts, and whose content I will block as long as I have the means. Because, quite frankly, I don't see the difference between the "legitimate" ones and the "shady" ones.

    The only way to win is not even play. Once you start running blocking stuff and realize the amount of shit embedded in every web page, you just treat them all as parasites or shit on your shoe: you remove them with extreme prejudice.

    --
    Lost at C:>. Found at C.
  8. Re:That PDF is lacking in so many details. . . by Vlad_the_Inhaler · · Score: 3, Informative

    Details like:

    What internet browser did they use?
    What basic security measures did they use?
    What does "Exposure" mean? Did the malware actually infect the computers exposed or did their security catch it?
    What sites did they test?

    I note things like how this very article LIES: 55% are user-initiated downloads, only 45% are drive-by downloads! Or how, while it is true that you're 28 times more likely to be "exposed" to malware on the piracy sites. . .it's a rise from 1 in 333 to 1 in 12. And again. . .Did those computers exposed actually get infected by the malware, or do basic security measures stop it?

    what operating system?
    Flash or Java vulnerabilities?

    nuthin useable.

    --
    Mielipiteet omiani - Opinions personal, facts suspect.
  9. Re:More generally by Vlad_the_Inhaler · · Score: 4, Funny

    Is there a name for an activity that earns you money, but less than the value of the damage you cause, making your activity a net negative for society? Any example of well-respected professions that would qualify?

    Lawyer?
    Oh, you said "well-respected". My bad.

    --
    Mielipiteet omiani - Opinions personal, facts suspect.
  10. Re:But the record and film industry is the problem by Anonymous Coward · · Score: 2, Insightful

    For the most part, people who download torrents understand the risks and are voluntarily subjecting themselves to the risks of a quasi-legal enterprise. People are less apt to complain about the consequences of choices they have made, and less likely to protest that people who don't understand the realities of downloading are getting taken for a ride.

    On the other hand, the music industry is a big, legal business which screws everyone involved with it but at the same time, protests that it has the moral high ground simply because the law says it gets its privileges.

    The reality is that they're both problematic, but the download sites are less inclined to pretend that they aren't an inhabitant of the Wild West of the Internet.