that's $666/month per user
>“Re-infection costs have been estimated at $0.0935 per device,” say Putman and co.
>For example, potential botnet masters can make use of pay-per-installation services to set up the network. These can be bought on the dark web, with a fixed fee of 2 to 10 cents per device for installing the malware.
So I can buy bots for 10 cents per device and make "well over" $3/day on them? Not sure the math adds up on this one.
Does anyone know how those hacks can generate revenues? I mean how can a DDOS generate revenue? What kind of bank fraud can a botnet do? How can click fraud generate profit (I guess if you suddenly receive $20 million on your adsense account google will immediately ban you)?
You rent out the capacity. Few hours of N Gbps flooding, courtesy of 20-30 thousand compromised home systems and IoT shitware units: tens to maybe low hundreds of dollars.
Now assume that's only a couple of percent of the total capacity under the botnet's control. Also, there are 24 hours in a day - once the current blaster's rental time expires, you have another one lined up already.
I recall seeing numbers in some fairly old Krebs article, but can't find it right now.
I’m sure anyone else in the ISP industry will tell you that anytime kids are off school (summer holidays or half term here in the UK) the DDoS alerts go up a notch or two.
It wasn't very pricy for small attacks, sometimes even free for anything under 300 seconds.
Alternatively splitting an extra 200k/month with a few large websites under the table probably works very well as there is less to distinguish bots from the overall noise. Another apraoch is probably setting up the equivalent of advertising re-sellers where you spend X$ advertising and get slightly more than X$ in revenue and then boost those results with click fraud.