Virus writers dismiss Microsoft bounty fund

News

Virus writers dismiss Microsoft bounty fund

Though cyberspace outlaws may look over their shoulder one extra time before launching a computer virus or worm, they won't be deterred by the $5m bounty fund established by Microsoft to help capture and convict them, two virus writers said.

Applying Wild West-type bounties to modern internet crimes, Microsoft has put two $250,000 rewards on the heads of the individuals responsible for unleashing the Blaster and Sobig worms that wreaked havoc in August. A further $4.5m was set aside for future bounties.

Microsoft hopes the money will make ill-intended code slingers think twice, but two virus writers dismissed the bounty fund as a marketing stunt and said it will have no deterrent effect.

"This new initiative from Microsoft does not change anything. Virus writers who spread their viruses know very well that what they are doing is illegal," said Benny, a Czech member of virus writing group 29A.

Although it "won't really scare" virus writers, they may become more careful about who they trust, said a member of virus writing group International Knowledge Exchange (IKX), who asked to remain anonymous.

"I think they may become more paranoid and not even tell their most trusted friends what they did," he said.

The virus writers side with Microsoft critics who say the company should focus on securing its software instead. "The bounty program is just another excuse for Microsoft's buggy products," Benny said.

Both 29A and IKX describe themselves as groups of people who create and study computer viruses and worms, but never release malicious code. They send their code to antivirus companies who typically do a write-up and place the virus in the catalogue of thousands of viruses that have never spread.

The US Federal Bureau of Investigation (FBI) does not think rewards alone will lead to fewer viruses and worms.

"We've never suggested that this reward will deter future hackers or criminal activity from authors of this type of code. What deters criminals is jail time. This reward offer is a step that potentially brings us closer to making an arrest, ultimately leading to a conviction and jail time," FBI spokesman Paul Bresson said.

International law enforcement has had a tough time tracking down creators of viruses and worms. Only a few have been brought to justice.

Arrests were made in connection with two variants of the Blaster worm, but those responsible for the original remain at large. No arrests have been made in connection with the Sobig worm, which was first detected in January.

Fighting crime in the virtual world is different from fighting real world crime in many ways, but it all comes down to getting the right lead, Bresson said.

"Whether it is the virtual world or the real world where crimes are being committed, there are people who talk to each other, so there are people who have information that can help and we encourage those people to come forward," he said.

But law enforcement and Microsoft should not count on information coming from people close to virus writers, the IKX member said. "I think those people behind the widespread worms are not very talkative, especially after their actions got a little out of hand," he said.

Microsoft believes loyalty in online communities is not as strong as some people might think, Nigam said. Furthermore, it is not just members of the Internet's underground that have information which can lead to the arrest and conviction of those who release malicious code, he said.

Joris Evers writes for IDG News Service


Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
 

COMMENTS powered by Disqus  //  Commenting policy