Nasty Idea of the Night: Bittorrent "Worm"
It's been awhile, but then again, it's always been awhile, but I digress.
So a nasty idea popped into my head tonight. Imagine attacking a BitTorrent by finding a buffer overflow in the client software and each host compromised checks it's peer list and compromises all those as well? Add extra nasty and have the payload also check for other torrents and send the exploit payload to those as well.
Interesting points:
- Could move incredibly fast.
- Complicated issues with client vulnerabilities vs protocol vulnerabilities. Unlikely to write an attack that works universally.
- Price the RIAA would pay for such a thing? *What's the keystroke for infinity*
- Tracker vulnerabilities.
Just a random thought. More to come.
2 comments:
Interesting idea, but I'm guessing it would be hard to create something that would work on all the clients on all the platforms.
For example, a protocol specific attack may or may not work on Azureus which is written in Java and thus runs on a VM which handles memory and resource management very differently than a native app running without a VM.
Also I suggest selling this idea individually to RIAA, MPAA and whatever AA is there for software to maximize profits. lol
Also, charge a license fee per every affected machine, and if they don't pay up sue them for infringement. ;)
The exploit should also do the following:
-Have each dropped exploit coded just slightly different to keep signature-writers (AV, IDS, et al) on their toes
-decentralize C&C, leverage fast-flux and encrypt comms with a simple (fast) algorithm
Name it BitStorm. ;)
Post a Comment