Botnets For Sale: Iranian Cyber Army Supports New Wave Of Cyber Warfare

The Iranian Cyber Army (ICA) has announced its intention to sell access to its botnets, which have been responsible for attacks on social networks like Twitter and the Chinese equivalent of Google, Baidu.

At the same time, Dutch authorities have disrupted a Bredolab botnet (one of the pieces of malware that the ICA sells) and shut down 143 servers hosted in the country, which were associated with a pay-per-install operation. The rise of these ‘hacker shops’ represent a new level of threat for governments and businesses.

The Iranian Cyber Army’s decision to sell its botnets is evidence of a more co-ordinated effort than ever before by the hacking community to execute targeted attacks. Whilst this is certainly not the first case of malicious code being sold online, with the rise of highly complex attacks like Stuxnet and Zeus the online hacker shops of old seem like child’s play when compared to this new wave of collaborative cyber warfare.

Cyber criminals are no longer just intent on stealing personal details for a quick cash hit or on sending inconvenient spam emails. They have much bigger prizes in mind, and are creating mechanisms dedicated at corporate espionage and attacking against real-world infrastructures, such as power stations. These attacks are more targeted, more sophisticated, and more potent.

The National Security Strategy’s £500 million injection of cash to bolster cyber security efforts is undoubtedly a step in the right direction. But it is not just about the money. As cyber criminal techniques evolve daily, the mindset needs to switch from the approach of old, which focuses on only preventing the known bad, to preventing anything entering the network unless it is known to be good. Only by applying this level of intelligence, can we be confident that our windows are locked tight and our valuable assets safe.

Alan Bentley is Senior Vice President of International Sales at Lumension Security. In this role, he is responsible for overseeing and driving sales and marketing efforts in Asia Pacific and EMEA. An industry veteran with over 10 years experience in the IT security industry, Alan is responsible for leading teams in EMEA and APAC and elevating brand awareness, thought leadership and increasing market penetration to drive growth in the respective markets. Prior to Lumension, Alan held executive management roles in security organisations based across the UK including Global Secure Systems and Ellipse Distribution. Prior to entering the security industry, Alan held sales roles for MAN Roland, a German based company in the printing industry and Hanson, a UK company in the construction industry. Alan holds a degree from Brunel University with a BA (Hons) in European Business Studies. He also completed his PGCE at Roehampton Institute.