Stealware

From HandWiki
Short description: A malware that convertly transfers money or data to a third party

Stealware refers to a type of malware that covertly transfers money or data[1] to a third party.

Specifically, stealware uses an HTTP cookie to redirect the commission ordinarily earned by the site for referring users to another site.

The term “Stealware” falls under the category of Spyware. Spyware are software applications that collect information about users without their permission instead of directly harming devices.[2] Both of these terms, in the broader classification, fall under the category of Malware.[3] Due to their broad definitions, Spyware and Malware both refer to a lot of different types of Malicious Software and in the more niche sense, stealware is any type of malicious software that "redirects the payment of affiliate marketing revenues from the legitimate affiliate to the spyware vendor by placing the spyware operator's affiliate tag on the user's activity or replacing any other tag, if there is one."[2] The niche aspect of the term stealware makes it a less known and rarely used term. Hence, it is more generalized as a type of spyware in mainstream usage.

Stealware has also broadened its capabilities through the manipulation of online banking systems. In a more mainstream term, this is known as banking malware. This malicious software manipulates online banking transactions and launders the stolen money to the operator of the malware.[4]

References

  1. Erbschloe, Michael (22 September 2004). Trojans, Worms, and Spyware= A Computer Security Professional's Guide to Malicious Code. Butterworth-Heinemann. p. 28. ISBN 9780080519685. https://books.google.com/books?id=-BsTixXQp08C&pg=PA28. 
  2. 2.0 2.1 Esquibel, E., Laurenzano, M., Xiao, J., & Zuvich, T. (2005). Cyber Criminal Activity: Methods and Motivations. University of Washington. https://courses.cs.washington.edu/courses/csep590/05au/whitepaper_turnin/CyberCriminalActivityFinalDraft.pdf
  3. Aqeel, Muhammad; Ali, Fahad; Iqbal, Muhammad Waseem; Rana, Toqir A.; Arif, Muhammad; Auwul, Md Rabiul (2022). "A Review of Security and Privacy Concerns in the Internet of Things (IoT)". Journal of Sensors 2022: 1–20. doi:10.1155/2022/5724168. ISSN 1687-725X. 
  4. Custers, Bart HM; Pool, Ronald LD; Cornelisse, Remon (2019). "Banking malware and the laundering of its profits". European Journal of Criminology 16 (6): 728–745. doi:10.1177/1477370818788007. ISSN 1477-3708. http://journals.sagepub.com/doi/10.1177/1477370818788007. 

External links