Originally published Monday, December 3, 2007 at 12:00 AM
Upstart Storm swiftly gained Web strength
If Rock Phish is the Microsoft of the cybercrime world, Storm is akin to Google: the upstart that has quickly gained enormous reach and...
San Jose Mercury News
If Rock Phish is the Microsoft of the cybercrime world, Storm is akin to Google: the upstart that has quickly gained enormous reach and the potential to generate loads of cash.
Its meteoric rise has left security experts unsure who is behind Storm, and why such an enormous botnet was built.
It started in late January, with messages bearing a simple subject line: "230 dead as storm batters Europe." Hurricane-force winds were blowing through Europe at the time, and Internet users across the continent clicked on the file attachment to learn more — unwittingly allowing the cybercriminals known as the Storm Worm group to take control of their computers.
Other enticing e-mails followed, spreading around the world in waves. There were headlines about the death of President Bush and war breaking out against Iran.
Some of the most successful arrived as e-greeting cards: Users thought they were receiving Easter or Fourth of July wishes from friends. Other messages lured users to a Web site packed with NFL stats — and filled with malware.
In just a few months, Storm created a network that Peter Gutmann, computer-science professor at the University of Auckland in New Zealand, estimates has more power than the world's largest government and corporate supercomputers. No one knows for sure how large: Many security researchers put the number at more than 100,000; some say 50 times that.
Security experts wonder why Storm has built such an enormous botnet. Cloudmark researcher Adam O'Donnell believes the goal was merely to build the network for rental to criminal enterprises.
Large botnets can be used to launch massive scams, including e-mail pump-and-dump schemes, in which criminals purchase cheap stocks, trick others into buying to briefly drive up the price, and then unload them at a profit. They might also capture passwords and account information stored within infected computers.
Experts are similarly uncertain who created Storm. Some data has pointed toward servers in China, and a Chinese woman's name was used to register some domains. Others believe it's headquartered in Russia.
But there is not much solid evidence. "We have no idea where the heck these guys are," said Arbor Networks' Jose Nazario.
Copyright © 2007 The Seattle Times Company
UPDATE - 09:46 AM
Exxon Mobil wins ruling in Alaska oil spill case
UPDATE - 09:32 AM
Bank stocks push indexes higher; oil prices dip
UPDATE - 08:04 AM
Ford CEO Mulally gets $56.5M in stock award
UPDATE - 07:54 AM
Underwater mortgages rise as home prices fall
NEW - 09:43 AM
Warner Bros. to offer movie rentals on Facebook

nwautos
(Daihatsu) Daihatsu FC Sho Case This futuristic four-seater debuted at the Tokyo auto show in December. Its seats can fold flat into the floor and th...
Post a comment
- Madrona dad killed by stray bullet as he drove through Central Area
- SPU surprises neighbors with sale of Queen Anne rec property
- Beer-drinking bridge builders will get training from a counselor
- Matt Flynn has good day in Seahawks' 3-way QB competition
- Boy's pat on president's head captured for history
- Why dealing for Kellen Winslow makes sense for Seahawks | Steve Kelley
- Police arrest New Jersey man who confessed to killing Etan Patz
- Amazon addresses criticism at meeting
- Driver fatally shot in Central Area
- Sources: DOJ sends letters to city blasting police-reform efforts
- Opponents of gay-marriage law say they have enough signatures
662 - Mariners try to extend some other team's misery for a change
337 - Quit drinking beer on job, Highway 520 builders told
329 - Komen controversy hurting Race for the Cure
197 - Madrona dad killed by stray bullet as he drove through Central Area
171 - Sources: DOJ sends letters to city blasting police reform efforts
134 - White House puts the Supreme Court on trial over health-care law
115 - Typical CEO made $9.6M last year, AP study finds
90 - Driver caught in crossfire, fatally shot in Central Area
87 - Mariners manager Eric Wedge says releasing Chone Figgins not a consideration and that Casper Wells was odd man out
64
- Dig into colorful history at Oregon's John Day Fossil Beds
- Madrona dad killed by stray bullet as he drove through Central Area
- Get a sitter — please — for these 10 great date-night restaurants | All You Can Eat
- SPU surprises neighbors with sale of Queen Anne rec property
- Beer-drinking bridge builders will get training from a counselor
- Boy's pat on president's head captured for history
- Zumiez rebounds from recession better than most
- Driver fatally shot in Central Area
- Gates Foundation grants give local groups a boost
- Downtown building fetches $55M, thanks to Amazon effect







