Gone Rogue: An Analysis of Rogue Security Software Campaigns

Date Added: Nov 2009
Format: PDF

In the past few years, Internet miscreants have developed a number of techniques to defraud and make a hefty profit out of their unsuspecting victims. A troubling, recent example of this trend is cybercriminals distributing rogue security software, that is malicious programs that, by pretending to be legitimate security tools (e.g., anti-virus or anti-spyware), deceive users into paying a substantial amount of money in exchange for little or no protection. In this paper, the authors present the techniques they used to analyze rogue security software campaigns, with an emphasis on the infrastructure employed in the campaign and the life-cycle of the clients that they infect.