2010: Cybercrime
Coming of Age
2010: Cybercrime Coming of Age white paper — January 2010
2
Table of Contents
Overview
3
Introduction
3
Crimeware
4
Botnets
4
Business Partners
5
Malware Developed in Latin America
5
Targeted Attacks
5
Security Trends
6
Social Engineering: Public Enemy Number One
6
Hot Topics
6
Vulnerabilities: OS Versus Application
7
Windows 7
7
Fair Game
8
Advertising and Malvertising
8
Jailbreaking: Breaking for the Border
9
A Question of Quarantine
9
Data: the Breach and the Observance
9
Rogue Mail (and Pop-ups, and Redirects, and…)
10
Internet as Infection Platform
10
Anti-Social Networks
11
References and Further Information
12
2010: Cybercrime Coming of Age white paper — January 2010
3
Overview
The Research teams in ESET Latin America and ESET, LLC put their heads together in December 2009 to discuss the likely
shape of things to come in the next 12 months in security and cybercrime (and cyberwarfare, to use one of the more
irritating buzzwords of the moment).
Randy Abrams, Director of Technical Education at ESET, LLC blogged the LLC Research Team’s thoughts: see http://www.
eset.com/threat-center/blog/2009/12/14/que-sera-sera-%e2%80%93-a-buffet-of-predications-for-2010.
ESET Latin America published its thoughts (in Spanish) at http://eset-la.com/centro-amenazas/2256-tendencias-eset-
malware-2010.
This document combines the thoughts of both teams into a single paper, proposing a comprehensive vision of how the
threatscape is likely to evolve in 2010.
A briefer summary of our combined thoughts was included in the December 2009 Global Threat Report at http://www.
eset.com/threat-center/index.php. For a more cynical view, you might want to check out “Top Ten Trite Security Predictions”
(http://www.eset.com/threat-center/blog/2009/12/30/top-ten-trite-security-predictions); however, this document takes a
rather more sober standpoint.
David Harley, FBCS CITP CISSP
Director of Malware Intelligence, ESET, LLC
Introduction
As you will have guessed from the title, we beli