In Russia, the first exchange earned by the sale of vulnerabilities in popular software. The cost of security breaches in the operating systems Windows, OS X, Linux and other is $ 35-80 thousand.
The address Expocod.com began working the first Russian exchange for the purchase of hackers and “holes” in software development, According to “Kommersant”. It has launched a team of specialists in the field of information security. The site expocod.com notes that Exchange customers are “government agencies and companies specializing in information security.” In this edition of sources claim that Expocod can also interact with the secret services.
As the “Kommersant”, the company founded Shorohov Andrew, who claims to be a former employee of Federal Financial Monitoring Service. “I am the sole owner Expocod and the final beneficiary of this project, some secret investors is not here, by all means in the development of the project have put me», – he told the publication
According to the list on Expocod online prices for the exploit (program. that uses a vulnerability in the software for carrying out an attack on a computer system) in Adobe Flash company is willing to pay $ 55 thousand., and the “gap” in different browsers can be sold for $ 35-60 thousand., a vulnerability in Tor anonymizer can be purchased for $ 80 thousand, and in the operating systems Windows, OS X, Linux, and others -… for $ 35-80 thousand
to inform vendors about the vulnerabilities, according Shorohova, Expocod not going. He also emphasizes that the search for and disclosure of vulnerabilities in the software is not illegal.
According Shorohova, the main activity of the company is the sale of exploits, but in addition, they intend to search for and develop vulnerability and also work on the creation of their software, which will allow to assess the level of protection to any iT-system.
«for example, we will be able to test for vulnerabilities bank ABS or the extent to which any defense enterprise is vulnerable to external threats “- Shorohov said. He noted that preliminary arrangements for such testing have been achieved with one of the Russian banks in the top 10.
Two sources of “Kommersant” familiar with the project say that now on the possible acquisition of Exploit We communicated as FSB. The special service on the publication request is not responded.
Earlier, in April this year, the IMF experts of Internet initiatives (FRII), Microsoft and Group-IB, said that the damage to the Russian economy from cybercrime in 2015 year, according to their calculations, amounted to 0.25% of Russia’s GDP, or more than 200 billion rubles.
No comments:
Post a Comment