ACM Queue magazine has this fictional account of malware creators and their experiences. Although the characters are made up, the techniques and events are patterned on real activities of many different groups developing malicious software. Very interesting read.
â€œA guarantee? You want a guarantee?â€ Misha frowned at the screen. His negotiations with kru5h3r via IRC had been going well, till now. Kru5h3r wanted a full-function rootkit that he could distribute to build a botnet. He was willing to pay, but he didnâ€™t want his investment to go up in smoke if his rootkit signature found its way into popular intrusion detection software.
â€œNobody gives a guarantee,â€ Misha thought, but as he was about to type that reply, something made him pause.
â€œThatâ€™s right… we offer them insurance!â€ Misha grinned. Slava looked at him in disbelief. â€œOf course, they pay for the custom rootkit, but for a little bit extra every month, we will give them protection from the signature databases. If their kit is spotted and tagged, weâ€™ll give them another one that does the same thing, but doesnâ€™t match the known signature. They pay us a subscription fee through Aurum, so it all stays nice and anonymous.â€
Read full story.