Torrent Sites Earned $70M After Dropping Malware On Visitors (softpedia.com) 91
jones_supa writes: One in three torrent sites is spreading malware, claims a recent joint report (PDF) from Digital Citizens Alliance and RiskIQ, which compiled data from over 800 sites. Most of the time, the sites expose visitors to drive-by attacks that silently download malicious files on computers without any user interaction. These types of attacks are usually carried out through malvertising campaigns. It turns out that this is actually a good business for the operators of the pirate sites: depending on traffic, they can make between $200 and $5,000 per day. In total it is estimated that this type of covert agreement between malware distributors and pirate site operators has pocketed the latter about $70 million per year.
Never trust torrent sites (Score:3)
Re: (Score:1)
Re: (Score:3, Insightful)
Just remember that $70M is calculated the same was the DEA calculates drug bust values and the RIAA/MPAA calculate piracy losses.
Re: (Score:2)
Re: (Score:1)
You are talking about the MPAA/RIAA...right?
Re:Never trust torrent sites (Score:5, Insightful)
I would download something from the Pirate Bay any day over a site like CNET's download.com. At least with Pirate Bay, there is a CHANCE a program doesn't come with malware.
Re:Never trust torrent sites (Score:4, Interesting)
Re: (Score:3)
I have had a VM browser get nailed on legit sites as well. Malvertising has replaced spam as the #1 issue plaguing the Net.
How are torrent sites that different from "top tier" websites that have had their ad servers dish out malware? Either way, it is wise to browse in a virtual machine, sandbox, or both.
In fact, given a choice of a download from a torrent site versus a popular software download site, I'll take the torrent. The torrent has anti-tampering resistance by itself (assuming the torrent file wa
Re: (Score:2)
Re: (Score:3)
Or torrent them, and verify the hashes.
Re: (Score:3)
Re: (Score:2)
Re: (Score:1)
Virtualization can go a long way with this. Create two VMs: VM1 is a PFSense appliance with firewalling, and VM2 is the VM for fetching and downloading torrents. This way, if VM2 gets infected, VM1 keeps it from affecting anything else, and a simple snapshot rollback kills all malware on VM2.
If worried about a VM->hypervisor bug, run the web browser in a sandbox (sandboxie, for example.)
Then, when done torrenting, fetch the files out (you can shut the VM down and fish them out of the disk image), roll
Okay, so... (Score:4, Insightful)
The websites send files to auto-download and it fills up my download folder a bit.
If you're computer-saavy enough to use torrents, you should be smart enough to disable the "automatically run downloaded files" feature of your browser.
Actually, one thing that really bugs me is those damn websites that force a file download when I try to view a PDF file inside my browser.
Re: (Score:3, Interesting)
I smell scaremongering rather than actual facts. There are no examples or case studies, just random numbers extrapolated to create a narrative and big money numbers.
What I'm surprised about is no "tech" site picking up the mining code running in hidden iframes on websites. It's bad enough with auto-playing videos for "affiliates", but now sites are trying to steal CPU cycles on our machines so they can create a billionth of a bitcoin every other year.
Re: (Score:2)
Browsers have an "automatically run downloaded files" feature?
It's called Javascript and Flash...
Re: (Score:2)
LOL ... Moo you damned torrenting cows, moo.
This is what kills piracy, not goverments (Score:2)
I see this as a much bigger threat to piracy than any enforcement of copyrights on individuals. Just a though.
Page one: "Digital Bait" (Score:4, Insightful)
"How Content Theft Sites and Malware Are Exploited By Cybercriminals to Hack Into Internet Users' Computers and Personal Data"
And you've blown any credibility you may have had.
Shocking Company funded by Movie Companies... (Score:5, Insightful)
Re: (Score:1)
At least Softpedia doesn't pack downloads within their own binaries so they can shove adware down your throat like CNet. How ironic would that have been if it was a CNet... or even worse... Softonic, the main ransomware deliverer on the Internet :)))
Re: (Score:2)
Plus, how can this in fact be true? The torrent sites themselves aren't uploading any material, they are just hosting the .torrent files. Is it even possible to change those to also include malware (which would have to come from a different domain than the rest of the torrent), and if so, how would it get launched once on the users' machine?
Re: Shocking Company funded by Movie Companies... (Score:3)
Once Torrent is served it is immutable. You cannot add things to it. The torrent could be infected during creation, but what really works is infecting the site that you use to download the torrent file. The easiest method is to trick users into thinking they need a browser plugin or something.
Re: (Score:2)
Pretty sure the "free mp3s" pages of the 90's were laden more than 33%. Actually, I reckon that's still not a smart google to date.
Re: (Score:2)
Re: (Score:2, Insightful)
For the most part, people who download torrents understand the risks and are voluntarily subjecting themselves to the risks of a quasi-legal enterprise. People are less apt to complain about the consequences of choices they have made, and less likely to protest that people who don't understand the realities of downloading are getting taken for a ride.
On the other hand, the music industry is a big, legal business which screws everyone involved with it but at the same time, protests that it has the moral hig
Guiding force of the internet. (Score:4, Insightful)
Re:That PDF is lacking in so many details. . . (Score:4, Informative)
Details like:
What internet browser did they use?
What basic security measures did they use?
What does "Exposure" mean? Did the malware actually infect the computers exposed or did their security catch it?
What sites did they test?
I note things like how this very article LIES: 55% are user-initiated downloads, only 45% are drive-by downloads! Or how, while it is true that you're 28 times more likely to be "exposed" to malware on the piracy sites. . .it's a rise from 1 in 333 to 1 in 12. And again. . .Did those computers exposed actually get infected by the malware, or do basic security measures stop it?
what operating system?
Flash or Java vulnerabilities?
nuthin useable.
Re: (Score:1)
I think that's called "capitalism".
Re:More generally (Score:5, Funny)
Is there a name for an activity that earns you money, but less than the value of the damage you cause, making your activity a net negative for society? Any example of well-respected professions that would qualify?
Lawyer?
Oh, you said "well-respected". My bad.
liberalism, politician (Score:2)
The answers to your two questions are:
Liberalism
Politician
See also "broken window fallacy ", on which most liberal economic thinking is based.
Re: (Score:2)
Wrecking Ball Operator?
Re: (Score:1)
Instead of going to that trouble, just use Linux and install NoScript.
Re: (Score:1)
meanwhile, on the news site.... (Score:1)
Upper right corner: "FLASH SALE: SpyShelter Premium 1YR 33% OFF!"
That managed to make it through adblocking and Umatrix. I am somewhat surprised that they only seem to use Google Analytics, though. Very, very little in the way of third party javascript for ad networks and analytics/tracking.
Who is the Digital Citizens Alliance? (Score:5, Informative)
This report is from something called the "Digital Citizens Alliance". Sounds good, right? Sounds like a bunch of pro-freedom net citizens protecting all of our rights, yes?
Would it surprise you to learn that the DCA is a lobbying group involved in trying to get Google to take down search results? Here's a sentence from their materials:
Does anyone else smell an agenda here?
Re: (Score:2)
They're a great organization. Just ask them!
75 Trillion Dollars! (Score:2)
Given the "estimates" usually made by companies paid by big media for piracy studies and the like, that makes me think that 70 Million is lot lot less by several levels of magnitude.
And this is why I will never trust ads ... (Score:4, Interesting)
And this shit is why I will never, ever be willing to treat ads as anything but malicious and dangerous affronts to my privacy and security.
I lump all analytics and ads into the same bucket: evil greedy bastards who I will never trust, never allow to run scripts, and whose content I will block as long as I have the means. Because, quite frankly, I don't see the difference between the "legitimate" ones and the "shady" ones.
The only way to win is not even play. Once you start running blocking stuff and realize the amount of shit embedded in every web page, you just treat them all as parasites or shit on your shoe: you remove them with extreme prejudice.
Re: (Score:2)
And this shit is why I will never, ever be willing to treat ads as anything but malicious and dangerous affronts to my privacy and security.
When I scroll to the top of the page I am greeted with the following text on the right:
"Ads Disabled: Tick
Thanks again for helping make Slashdot great!"
Rings true doesn't it, though I'm not sure that's the message that Dice intended.
qBittorrent (Score:2)
There's no need to visit a site when your client has built in search across whatever you want to configure it with as well as sensible defaults and no malware included (I'm looking at YOU SourceForge).
I highly recommend qBittorrent [qbittorrent.org] for that, as one reason among many. I've used it for years and is the best client I've encountered.
Also, who visiting a torrent site doesn't use ad blocking? Why would you do that to yourself?
Re: (Score:1)
qBittorrent: hosted at.... SourceForge [sourceforge.net]!
Re: (Score:1)
Re: (Score:2)
While I agree with your recommendation of qBittorrent, in-client search is only useful when you know exactly what you're looking for. If you want to browse, you're SOL unless you
Re: (Score:2)
avoiding malware...streaming! (Score:2)