File sharing pirates go underground

Networks being used to trade terabytes of software

James Middleton

Software pirates are borrowing techniques and tools from hackers in a bid to take over high bandwidth servers, such as those at universities and web hosts, to help develop large underground file sharing networks.

White hat security firm ISS X-Force has been tracking the growth of a number of underground file sharing networks that are being used to trade terabytes of pirated software and movies.

Advertisement

The networks work on a similar concept to Napster and Morpheus, but typically focus on larger files such as applications and movies, and use stolen bandwidth and storage to host them.

Pirates need high storage and bandwidth capabilities to send and receive digital contraband the size of modern software packages and pirated movie files.

The files are several hundred megabytes in size, so it is cost-prohibitive for 'warez' pirates to use their own servers to distribute the material.

As a result, thousands of machines are thought to be infected with rogue file-sharing software controlled by Internet Relay Chat (IRC) 'bots', unknowingly participating in a massive underground file-sharing network.

These large bot networks are extremely popular and bandwidth hungry. The largest have 300 to 400 bots, all logged into the same IRC network and listening on the same IRC channel.

Larger channels can have thousands of individuals downloading files from these bots.

IRC has long been favoured by the hacker community to congregate, discuss tactics and techniques, and trade tools.

But more recently, as bots have developed, IRC has been used to control large numbers of IRC-aware distributed denial of service (DoS) zombie programs and warez distribution bots.

An increasing overlap has appeared between the hacking and warez communities, and software pirates are now borrowing techniques and tools from the hacking community.

Attackers attempt to compromise low risk/high reward systems, such as servers in .edu domains, home broadband users, web hosting companies, and internet service providers, and install backdoors and remote control programs in order to connect them to IRC-based file-sharing networks.

IRC bots like 'iroffer' are especially user friendly and provide instructions to novice pirates on how to download files.

This bot software may also install Trojan horses, allowing a remote attacker to gain access to the system.

Such attackers do not need further access to the infected target in order to utilise its resources and, aside from distributing pirated software, high bandwidth machines are often used as DoS weapons in hacker warfare.

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Tags:

Do you agree?

Further reading

Computer scam ring faces court

Two-year investigation into New York-based gang ends

Related whitepapers

Related jobs

Most watched

eu flag

V3.co.uk weekly debrief, 6 Nov 09

This week, Europe decides what to do with illegal file sharers

Intel unveils its micro server platform

Small-enclosure systems take aim at hosting market

IT white papers

Search white papers

Top categories

Poll

Impact of Information Overload poll

Impact of Information Overload poll

What is the biggest problem your firm faces as a result of the data explosion?

View poll results

Advertisement

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Spotlight

Piracy, privacy and processing power set to be hot topics for V3.co.uk Summit

Have you got a burning desire to quiz experts from...

iPhone

World's first iPhone virus surfaces

Images of 80s icon Rick Astley spell trouble

Airvana HubBub

Airvana debuts 3G femtocell for offices

HubBub improves indoor network coverage for businesses

shopping key

E-commerce on brink of SaaS revolution

Figleaves founder argues platform-as-a-service vendor will emerge to shake up...

Primary Navigation