[an error occurred while processing this directive]
BBC News
watch One-Minute World News
Last Updated: Friday, 8 April, 2005, 10:56 GMT 11:56 UK
Ex-hacker warns on computer security
Spencer Kelly
By Spencer Kelly
Reporter, BBC Click Online

A reformed ex-hacker gave Click Online's Spencer Kelly a demonstration of just how much damage a worm or virus can do to your home computer.

Jacques Erasmus, ex-hacker
Jacques Erasmus now uses his experience to fight the hackers
Jacques Erasmus makes his living advising on computer security, helping to write software to repel hackers.

His extensive experience comes from a less honourable past: as a hobby, he used to be a hacker himself.

But he says that, unlike him, today's hackers do not just do it for fun.

"The new breed of hackers are driven by money. That's their main motivation, extorting businesses and other institutions.

So how do these people, who presumably have day jobs related to computers, get together and decide to form a group of hackers?

Speedy attack

Jacques Erasmus says: "I think they mostly hang out in chat rooms and forums on the 'net, discuss hacking computer security and from these groups they'll find people that they think are suitable, with the right skill set, and they'll form a team, a crew."

Within seconds of infection, our PC started downloading some strange programs
Jacques wanted to demonstrate just how risky it is to connect an unprotected PC to the internet.

We set up a poor Windows XP machine with no firewall or anti-virus software.

Connecting it to the internet would be like throwing it into a lion pen with raw meat strapped to its hard drive.

How long would it be before we were hit by something nasty on the net? Hours, minutes?

As it turned out - eight seconds!

We were hit by Sasser, one of the fastest spreading worms on the internet.

It wastes no time at all in taking over your PC.

Within seconds of infection, our PC started downloading some strange programs, or payloads, from mysterious internet addresses.

These payloads are the programs that can take control of your machine and turn it into a remote controlled bot.

Sinister

Our machine then started scanning random internet addresses, looking for other vulnerable PCs to infect.

Then Internet Explorer started downloading spyware.

Botnet
Large websites and businesses are frequently targetted by hackers
Within five minutes our PC was running so many malicious programs that the CPU (central processing unit) was running flat-out at 100% - and we were not even touching it.

Perhaps the most sinister thing about an infected PC is that it can become part of a "botnet" - a network of seemingly innocent but infected machines whose combined processing power can be hired out to organized crime.

These botnets can comprise hundreds or thousands of zombie PCs, all awaiting instructions.

One of the most common instructions would be to launch a concerted attack on a popular website - a DDOS (distributed denial of service) attack, where major websites are flooded with repeated bogus requests from hundreds of zombie PCs.

Overwhelmed by the traffic, the site goes down.

Extortion

Several large websites, including Google, have already fallen victim to DDOS attacks.

Jacques Erasmus explains: "First is the extortion, where they'll phone a high profile website that has lots of visitors and makes money, and they'll say to them 'give us 100,000 or we'll take down your website for X amount of hours'."

Our PC crashed completely in less than 30 minutes
If the targeted website then fails to pay the money it is DDOSed to death.

Another function of a remote-controlled PC is to report back all the keystrokes typed on its keyboard.

This is thought to be how hackers recently obtained passwords to the systems of the Sumitomo Mitsui bank in London, and began electronically stealing funds.

In this case, police foiled the scam and made an arrest.

Lost trail

But following the money trail often proves difficult, as Jacques points out.

"I've heard that these guys all set up Latvian bank accounts, which are pretty much untraceable. Latvia is the new Switzerland.

"If you found a hole in software that millions of people use, and is very high profile, you can sell that to the highest bidder for perhaps one or two million dollars."

Of course, if you have been a victim of hacking, it is no laughing matter.

It certainly was not for our PC, which crashed completely in less than 30 minutes.

It is interesting to note that although we were only hit by three worms in 25 minutes, the damage each of them did was enormous.

All of it could have been prevented with anti-virus software and a firewall.


Click Online is broadcast on BBC News 24: Saturday at 2030, Sunday at 0430 and 1630, and on Monday at 0030. A short version is also shown on BBC Two: Saturday at 0645 and BBC One: Sunday at 0730 . Also BBC World.



SEE ALSO:
Training a new breed of hacker
08 Apr 05 |  Click Online
Zombie PC
01 Sep 04 |  Click Online
Hacking: A history
27 Oct 00 |  Science/Nature
Top 20 computer threats unveiled
09 Oct 04 |  Technology
Computer crime laws need updating
30 Jun 04 |  Technology
Hackers: Friends or foes?
14 Jul 04 |  Business


RELATED BBC LINKS:

PRODUCTS AND SERVICES

News Front Page | Africa | Americas | Asia-Pacific | Europe | Middle East | South Asia
UK | Business | Entertainment | Science/Nature | Technology | Health
Have Your Say | In Pictures | Week at a Glance | Country Profiles | In Depth | Programmes
Americas Africa Europe Middle East South Asia Asia Pacific