Releaselog

eBay style auction for 0day exploits

Posted on 07.07.2007 at 07:21 in Tech News by Martin

The internet world is spoiled. And I mean this right now. Because if someone tries to earn money auctioning on some extra new exploit, it’s definitely bad. Exploit is a piece of code, which can be used to hack some remote computer over the internet or local network. These 0day exploits are extremely dangerous – it usually takes few days to release a patch or bugfix, and hackers usually succeed to hack hundreds or thousands of computers in this time. Many malicious and criminal hackers rely on loopholes in widely used software, usually Windows, to get access to the valuable information on users PCs. There is known to be a ready market for these vulnerabilities on the digital underground and significant sums of money can be made by selling them.

In early 2006 anti-virus firm Kaspersky Labs revealed that Russian hackers had been selling the Windows WMF vulnerability for $4000. The loophole was offered for sale weeks before it was widely known about and long before Microsoft moved to close it. Many criminal groups prefer to use vulnerabilities for their own ends to steal information or hijack computers rather than have any and every malicious hacker using them. The independent auction house, called WabiSabiLabi, aims to staunch the flow of vulnerabilities to the underground by giving security researchers a legitimate marketplace for what they find. The first vulnerabilities posted to WSLabi are selling for between 500 and 2000 euros.

* Comments(5)

Comments (5)

Feel free to post your eBay style auction for 0day exploits torrent, subtitles, samples, free download, quality, NFO, rapidshare, megashares, sendspace, filesonic, filefactory, netload, crack, serial, keygen, requirements or whatever-related comments here. Don't be rude (permban), use only English, don't go offtopic and read FAQ before asking a question. Owners of this website aren't responsible for content of comments.
  1. crimson
    July 7th, 2007 | 07:25

    people will sell stuff as long as there are people who buy stuff ..

    and martin: not the internet world is spoiled, the goddamn world is spoiled ;p

  2. Jrad (Jered)
    July 7th, 2007 | 07:39

    crimson’s statement couldn’t be more well put. I meanboth of them ;) , lol.

    Although it is a bit scary hearing news like this. :( .

  3. cadavra
    July 7th, 2007 | 10:34

    Methinks the hackers will shut that site down in a real hurry.

  4. madcowdisease
    July 7th, 2007 | 19:56

    WabiSabiLabi !?!
    C’mon, you can come up with a better name than that,
    it sounds like it’s some kinda african disease or somethin’

  5. tumbler
    July 7th, 2007 | 23:22

    The “Local Linux kernel memory leak” has already been fixed for quite a while now.

    => Affected Linux kernel versions: 2.6.0 to 2.6.20.1

    2.6.21.6 is the current stable one. (which is what I’m on).

Leave a reply