Imagine for a moment the mere oppurtunity to know your fate, receive a billion dollars or cause whomever you admire most to fall deeply in love with you and never deceive your wicked ways. We have all had the creative concepts of such aforementioned theories, however, would you be willing to sacrifice, say your soul? As much as I would enjoy conjuring up a method for benefiting everyone’s personal life from extracting the slight spirit that drives their homo sapien bodies.. I can’t.
However, Mike Bond and George Danezis from Cambridge University have created a wonderful paper on the theory of forming a pact with the devil. The concept is simple, the benefits, possibly enormous, however, the sacrifice is unimagineable for someone such as myself. If I were asked to trade 10% of my overall CPU cycles and processing power to receive $40.00/hour, I would say yes. But this is just a little wicked. The theory is that individuals will sacrifice their own secrets and personal data for the oppurtunity to read and analyze someone elses.
We study malware propagation strategies which exploit not the incompetence or naivety of users, but instead their own greed, malice and short-sightedness. We demonstrate that interactive propagation strategies, for example bribery and blackmail of computer users, are effective mechanisms for malware to survive and entrench, and present an example employing these techniques. We argue that in terms of propagation, there exists a continuum between legitimate applications and pure malware, rather than a quantised scale.
What if you received an email from a co-worker that contained a virus, email coming from JoAnn. The virus immediately informed you, “If you open me and allow me to spread throughout your contacts, I will give you unlimited access for three days to JoAnn’s computer and one other infected associate of your choice.” Would you take the offer? This is the principle behind “Pact with Satan.” A virus that propogates, not automatically through email address contact books, but via the greed of other individuals wanting to know what they shouldn’t about other people.
Jun 06
This entry was posted on Tuesday, June 6th, 2006 at 10:51 amand is filed under techwire, security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.Give me money!
Sponsors
2 Comments Pact with Satan
Albert
June 6th, 2006 at 11:21 am
1I have read the article, and can’t say I agree with everything although they were on point when discussing the propogation methods via p2p networks. In a corporate environment, where most users won’t be able to control their own anti-virus software, I don’t see this being very likely. Where I work, I have to deal with Symantec quarantening NetCat, RAdmin etc… imagine a virus? :)
Justin
June 6th, 2006 at 1:03 pm
2Albert,
I agree with your point, but there are numerous large corporations on the planet that utilize such measures as anti-virus and even have capabilities to detour viruses at the gateway using point of entry techniques as the malwares comes into the network, however, stuff still floats in. I more or less just enjoyed the concept, Joe blow would trade his computers safety and give away his virtual soul for a piece of his ex girlfriend’s myspace log..
Interesting read..
RSS feed for comments on this post · TrackBack URI
Leave a Reply Pact with Satan