Feeds

Facebook donates cash seized from spammers to cyber CSI lab

Ill-gotten $250k for Koobface, GhostClick takedown team

Providing a secure and efficient Helpdesk

Facebook has donated $250k it seized from spammers to an academic centre of excellence in the fight against cybercrime.

The University of Alabama at Birmingham's Center for Information Assurance and Joint Forensics Research will use the cash to build an expanded version of the faculty, due to open next year. The centre helped researchers at Facebook to track down the infamous Koobface gang and helped to unravel the even more notorious GhostClick (DNSChanger) scam, among other work.

Notable researchers at the centre include Gary Warner, Director of Research in Computer Forensics and co-chair of Anti-Phishing Working Group. Warner also runs the well read CyberCrime & Doing Time blog.

"As a result of numerous collaborations over the years, Facebook recognizes the center as both a partner in fighting Internet abuse, and as a critical player in developing future experts who will become dedicated cybersecurity professionals," says Joe Sullivan, chief security officer at Facebook, in a statement. "The center has earned this gift for their successes in fighting cybercrime and because of the need for formal cybersecurity education to better secure everyone’s data across the world."

The donation itself will be widely applauded in security circles even though the Koobface investigation remains controversial. In January 2012, the New York Times publicly named five people security researchers have fingered as prime suspects in the spread of the Koobface worm, a strain of malware that has bedevilled social networking users (particularly on Facebook) since late 2008. Koobface, which was unusually sophisticated, earned scammers income principally through pay-per-install malware.

Critics argue that the disclosure was premature and served only to tip off the suspects, who subsequently went to ground. Whatever the truth of that, no arrests or lawsuits have been filed as a result of the investigation. ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
SMASH the Bash bug! Apple and Red Hat scramble for patch batches
'Applying multiple security updates is extremely difficult'
Shellshock: 'Larger scale attack' on its way, warn securo-bods
Not just web servers under threat - though TENS of THOUSANDS have been hit
Apple's new iPhone 6 vulnerable to last year's TouchID fingerprint hack
But unsophisticated thieves need not attempt this trick
Oracle SHELLSHOCKER - data titan lists unpatchables
Database kingpin lists 32 products that can't be patched (yet) as GNU fixes second vuln
Who.is does the Harlem Shake
Blame it on LOLing XSS terroristas
Researchers tell black hats: 'YOU'RE SOOO PREDICTABLE'
Want to register that domain? We're way ahead of you.
Stunned by Shellshock Bash bug? Patch all you can – or be punished
UK data watchdog rolls up its sleeves, polishes truncheon
prev story

Whitepapers

A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.