Guillaume Lovet Fortinet
Today, the profits generated by cybercrime worldwide are somewhere between 50 billion and 100 billion US dollars per annum, flirting with the revenues yielded by the 'historic' business of illegal drugs.
However, as the public becomes aware of the situation, user education and global security policies tend to improve as well. To sustain profitable balances - or simply to optimize their gains - money-driven cybercriminals are therefore pushed to innovate, to polish their social engineering methods and to go as far as taking physical action to implement their business logic. While companies are not spared, their targets of choice remain the average user. You, me, anyone.
While the 2006 Virus Bulletin paper 'Dirty Money on the Wires' was a snapshot of the most 'traditional' business models among the cyber-underground scene over the past two years, this paper will go deeper underground, closer to the culprits: based on quantified data, light will be shed on new - or anticipated - business models,following the evolution of cybercriminals as we are entering the Web 2.0 era, and as borders between crime and cybercrime become thinner every day.