Amazon's cloud services systematically exploited by cybercriminals

Amazon's cloud services systematically exploited by cybercriminals

Summary: Security researchers from Kaspersky Labs have spotted yet another SpyEye crimeware variant using Amazon's Simple Storage Service (Amazon S3) for command and control purposes.

SHARE:
TOPICS: Amazon
6

Security researchers from Kaspersky Labs have spotted yet another SpyEye crimeware variant using Amazon's Simple Storage Service (Amazon S3) for command and control purposes.

According to a graph released by the vendor, cybercriminals are systematically abusing Amazon's service for command  and control gateway, in an attempt to increase the average lifetime of the malware campaign.

This traffic camouflaging technique from a network perspective isn't new, what's new is the persistence shown in the graph in terms of systematically abusing the service.

Does crimeware in the cloud have a future? Most certainly, as cybercriminals appear to have been actively experimenting with the average lifetime for their malware campaigns, both, using rogue ISPs and netblocks, and legitimate cloud services, ultimately leading them to the conclusion that it's worth it.

Topic: Amazon

Dancho Danchev

About Dancho Danchev

Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, malware and cybercrime incident response.

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

6 comments
Log in or register to join the discussion
  • RE: Amazon's cloud services systematically exploited by cybercriminals

    Do the miscreants pay their bills on time? And do they tend to prefer multi-tenancy ?

    Perhaps, paying customers is all Amazon cares about. Plus, they can beef up their usage statistics with the miscreants as proof that the cloud is on fire.
    Rabid Howler Monkey
    • RE: Amazon's cloud services systematically exploited by cybercriminals

      That's one major problem that could come of the cloud computing era. If cyber criminals get ahold of some of the information stored there, it could really be a problem. <a href="http://www.inkcartridges.com/">printer ink</a>
      rctnp6
  • Another reason why Apple is winning.

    You can be sure the iCloud will be criminal-proof as it's based on rock-solid Unix.
    MSFTWorshipper
  • patek philippe replica watches

    An unacceptable love needs no sorrow but time- sometime for forgetting.A badly-hurt heart needs no sympathy but understanding.?
    <a href="http://www.perfectreplicawatch.co.uk/">wrist watches</a>
    freelove11
  • RE: Amazon's cloud services systematically exploited by cybercriminals

    If you think about it...this is pretty smart on their behalf. Even using facebook as another medium...or even paypal. These cyber criminals are very resourceful.
    <a href="http://www.carters.com/oshkoshbgosh/oshkosh-kid-girl-dresses,default,sc.html">girls dresses</a>
    Izzy Mass
  • RE: Amazon's cloud services systematically exploited by cybercriminals

    One of the reasons cyber criminals don't target certain systems is because it isn't worth it since the market share is so low. Check out <a href="http://www.seolair.com/deadbeat-super-affiliate-review/">Deadbeat Super Affiliate</a> if you are trying to make money online by becoming a super affiliate with Amazon or Ebay.
    seolair