Software Helps FBI Crack International Cybercrime Case

  • Nov 14, 2011

University of Alabama at Birmingham researchers helped the Federal Bureau of Investigation and NASA Office of Inspector General identify seven foreign nationals arrested for a massive, sophisticated Internet fraud that infected more than 400 million computers in 100-plus countries and scammed $14 million.

The defendants in the FBI Operation Ghost Click were tracked down with assistance from the UAB Spam Data Mine, which archives and analyzes spam campaigns gathering more than 1 million emails per day. The database, which holds about 550 million spam email messages, is the reason law enforcement asked UAB for assistance.

"The information we received from UAB’s software was invaluable to our efforts in the apprehension of these international suspects,” said FBI Supervisory Special Agent Thomas Grasso Jr.

At least 500,000 computers infected in the United States belonged to government agencies -- including NASA, educational institutions, non-profit organizations, businesses and individuals. (UAB’s computers were not infected.) The malware secretly enabled the defendants to hijack Internet searches and reroute computers to certain websites and advertisements and prevented infected computers from installing anti-virus software.

“The UAB Spam Data Mine allowed us to tell the FBI when new email-based threats contained versions of particular comput

er viruses that were related to the malware family associated with this case,” says Gary Warner, director of Research in Computer Forensics in the UAB College of Arts and Sciences. “Our team can help law enforcement quickly track down and successfully prosecute cybercriminals anywhere in the world because we can identify related spam almost instantaneously.”

Warner, five times selected as a Microsoft Most Valuable Professional and author of the Cyber Crime & Doing Time blog, is a member of UAB’s Center for Information Assurance and Joint Research Foundation. The center, known for interdisciplinary research and development, offers law-enforcement solutions in many areas, including spam data-mining, phishing, computer security, computer intrusion and identity theft.

“We created the center to respond to rapidly emerging and enduring threats to global, domestic and regional commerce and safety,” says its founding director Anthony Skjellum, Ph.D., chair of UAB Computer and Information Sciences. “Our team has taken the lead in helping law enforcement eradicate cybercrime by making it near impossible for online criminals to hide.”

Featured

  • Security Today Announces 2025 CyberSecured Award Winners

    Security Today is pleased to announce the 2025 CyberSecured Awards winners. Sixteen companies are being recognized this year for their network products and other cybersecurity initiatives that secure our world today. Read Now

  • Empowering and Securing a Mobile Workforce

    What happens when technology lets you work anywhere – but exposes you to security threats everywhere? This is the reality of modern work. No longer tethered to desks, work happens everywhere – in the office, from home, on the road, and in countless locations in between. Read Now

  • TSA Introduces New $45 Fee Option for Travelers Without REAL ID Starting February 1

    The Transportation Security Administration (TSA) announced today that it will refer all passengers who do not present an acceptable form of ID and still want to fly an option to pay a $45 fee to use a modernized alternative identity verification system, TSA Confirm.ID, to establish identity at security checkpoints beginning on February 1, 2026. Read Now

  • The Evolution of IP Camera Intelligence

    As the 30th anniversary of the IP camera approaches in 2026, it is worth reflecting on how far we have come. The first network camera, launched in 1996, delivered one frame every 17 seconds—not impressive by today’s standards, but groundbreaking at the time. It did something that no analog system could: transmit video over a standard IP network. Read Now

  • From Surveillance to Intelligence

    Years ago, it would have been significantly more expensive to run an analytic like that — requiring a custom-built solution with burdensome infrastructure demands — but modern edge devices have made it accessible to everyone. It also saves time, which is a critical factor if a missing child is involved. Video compression technology has played a critical role as well. Over the years, significant advancements have been made in video coding standards — including H.263, MPEG formats, and H.264—alongside compression optimization technologies developed by IP video manufacturers to improve efficiency without sacrificing quality. The open-source AV1 codec developed by the Alliance for Open Media—a consortium including Google, Netflix, Microsoft, Amazon and others — is already the preferred decoder for cloud-based applications, and is quickly becoming the standard for video compression of all types. Read Now

Most   Popular

New Products

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions.

  • EasyGate SPT and SPD

    EasyGate SPT SPD

    Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles.

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities