China jails Panda worm writer for four years
Others involved in 2006 outbreak to serve up to two and a half years
September 24, 2007 12:00 PM ETComputerworld - The 25-year-old programmer who unleashed the Panda worm almost a year ago in China was sentenced today to four years in prison, a news service reported from Beijing.
Li Jun, arrested in February and charged last month with making approximately $13,000 selling the worm -- dubbed both "Fujacks" and "Panda Burning Joss Sticks" -- was given a four-year jail term by a court in Xiantao, China. Three other men -- all in their 20s, according to the Deutsche Presse-Agentur (DPA) wire service -- were sentenced to between one year and two and a half years for their part in spreading the worm.
The case opened today with prosecutors claiming that Li and the other defendants had caused "huge damage to millions of computer users from November to March," said DPA.
Altogether, the four men raked in just under $27,000 from their sales of Panda, which was written in October 2006 and released the next month. Li received the largest share. Another defendant, Wang Lei, got the second-largest slice: $10,500.
Li also made news after his arrest when police forced him to write a cleansing tool that was supposed to wipe Fujack from infected PCs. Local police said that they would release the tool, but there has been no confirmation that authorities ever let it loose. Shortly after the news broke, Symantec Corp. researchers analyzed a copy and said it was nearly worthless.
Western security researchers weighed in again today. "Chinese cybercriminals are not just hitting PCs in their own country, but impacting computer users worldwide, so it's encouraging to see the authorities taking action," Graham Cluley, a Sophos PLC senior technology consultant, said in a statement.
Panda's main purpose was to steal online game usernames and passwords, another fact that Cluley noted today. "[We] have noted that a surprising proportion of malware written in China is designed to steal credentials from players of MMORPGs (Massively Multi-player Online Role-Playing Games)," he said. "This stolen information provides a revenue stream for unscrupulous hackers who will sell the information on to the highest bidder."
Read more about security in Computerworld's Security Knowledge Center.
Panda
Additional Resources



White Papers & Webcasts
Death to PST Files
Download Now
The Tangled Web: Silent Threats & Invisible Enemies
Download Now
Tape Killed the IT Guy
Watch Now
Forrester Consulting Mobility Study: Taking Control of Enterprise Mobile Device Diversity
Download Now
BRM: What You Can Do To Reduce Risk In Challenging Times
Watch this webcast now!
What IT Must Do to Support Employee-Owned BlackBerry, iPhone and Android Mobile Devices
Download Now
Web 2.0, Social Media and the Dark Web - A Web Criminals Paradise?
In this discussion, learn about the challenges of protecting your users from the potentially unsafe content hidden in the "Dark Web".
eGuide: Enterprise Security
Smart Security Strategies for 2010. Read now!
Disaster Recovery 2008: Reduced Costs and Improved Performance
How long can your Enterprise afford to be without your data? With an accelerated disaster recovery program, you never have to answer this...

