Malware Now a Group Effort
McAfee's Avert Labs reports that hackers are now using the same techniques as open-source developers to spread malicious software, which is evident with the use of bot software, which lets them control infected computers from a remote area. "Over the last year and a half, we've noticed how bot development in particular has latched on to open-source tools and the open-source development model," says Dave Marcus at McAfee. The number of open-source bot software source files in now in the hundreds, and some tools, such as the Agobot malware family, are being managed by the open source Concurrent Versions System (CVS) software. McAfee says it is trying to attract attention to the open-source methods in an effort to inform users, not promote its own products, says Marcus. "We think [open-source antivirus products] are fine...we've always been big supporters of open-source antivirus," says Marcus. However, Marcus is critical of the practice of full-disclosure, in which some security researchers release samples of malicious software. Stefano Zanero at Secure Network argues that full disclosure is needed because it makes vendors more responsive to users.
© Copyright 2006 INFORMATION, INC.
Print This Article
E-mail This Article
