Jart Armin
   HOME

TheInfoList



Click Here for Items Related To - Jart Armin
OR:
Jart Armin on:   [Wikipedia]   [Google]   [Amazon]

Jart Armin is an investigator, analyst and writer on
cybercrime Cybercrime encompasses a wide range of criminal activities that are carried out using digital devices and/or Computer network, networks. It has been variously defined as "a crime committed on a computer network, especially the Internet"; Cyberc ...
and
computer security Computer security (also cybersecurity, digital security, or information technology (IT) security) is a subdiscipline within the field of information security. It consists of the protection of computer software, systems and computer network, n ...
, and researcher of cybercrime mechanisms and assessment.


Life

Armin first came into the public eye in 2007 from his exposure of the RBN (Russian Business Network). Throughout 2007, via a dedicated blog entitled RBNExploit, he provided reports and analysis on the undercover operations of the RBN criminal gang, despite constant DDoS attempts and artificially-created mirror websites. It was via the RBN blog that Armin provided the first reports of cyber attacks, used in conjunction with the invasion of Georgia by Russian troops, three days in advance of the attack in August 2008. As an advocate of an
open source Open source is source code that is made freely available for possible modification and redistribution. Products include permission to use and view the source code, design documents, or content of the product. The open source model is a decentrali ...
community approach to the fight against cybercrime, Armin established
HostExploit Jart Armin is an investigator, analyst and writer on cybercrime and computer security Computer security (also cybersecurity, digital security, or information technology (IT) security) is a subdiscipline within the field of information secu ...
as an educational website aimed at exposing internet bad actors and cybercriminal organizations which deliver
crimeware Crimeware is a class of malware designed specifically to automate cybercrime. Crimeware (as distinct from spyware and adware) is designed to perpetrate identity theft through social engineering or technical stealth in order to access a computer ...
through hosts and registrars.


The Reports

In August 2008, Jart Armin, via HostExploit, published a report " Atrivo - Cyber Crime USA","Atrivo - Cyber Crime USA"
- HostExploit Report stating that Atrivo (aka Intercage) - a
Concord, California Concord ( ) is the most populous city in Contra Costa County, California, Contra Costa County, California, United States. According to an estimate completed by the United States Census Bureau, the city had a population of 124,016 in 2024, maki ...
-based website hosting provider deliberately allowed cyber criminals to use its services. This brought about the shutdown of Atrivo with a related 10% drop in botnet and spam activity worldwide. In November 2008, Armin published a further report, " McColo - Cyber Crime USA", with contributions from
StopBadware StopBadware was an anti-malware nonprofit organization focused on making the Web safer through the prevention, mitigation, and remediation of badware websites. It is the successor to StopBadware.org, a project started in 2006 at the Berkman Cente ...
,
Trend Micro is an American-Japanese cyber security software company. The company has globally dispersed R&D in 16 locations across every continent excluding Antarctica. The company develops enterprise security software for servers, containers, and cloud ...
, Emerging Threats, KnujOn, Sunbelt, CastleCops,
The Spamhaus Project The Spamhaus Project is an international organisation based in the Principality of Andorra, founded in 1998 by Steve Linford to track email spammers and spam-related activity. The name ''spamhaus'', a pseudo-German expression, was coined by Li ...
,
Arbor Networks Arbor Networks is a software company founded in 2000
, Malwaredomains, Threat Expert,
SecureWorks Secureworks Inc. is an American cybersecurity company. The company has approximately 4,000 customers in more than 50 countries, ranging from Fortune 100 companies to mid-sized businesses in a variety of industries. It became part of Dell, Dell ...
, aa419, Malwaredatabase and Robtex. The report, and press coverage used in conjunction to the report, were instrumental in the demise of McColo by revealing the web hosting service provider to be deliberately funding criminal activities and illegal child sexual abuse content. The cybercriminal activities of EstDomains were tracked by Armin and his allies in RBN blog postings and HostExploit reports. Exposing the link between the RBN and EstDomains in the October 2008 report entitled "RBN – Farewell to EstDomains" lead to the operational closure of the EstDomains business and to its customer base moving to the Asian registrar Directi. In a joint venture with Andrew Martin of MartinSecurity.net, Armin issued the report "Real Host Latvia – RBN Resurgence or Clone?" in August 2009, providing further evidence of continuing RBN involvement in internet fraud. Telia, the hosting registrar, suspended all involvement with Real Host when provided with the evidence contained within the report. In November 2009, in another joint venture with Andrew Martin and Scott Logan, Jart Armin and HostExploit released a report called "MALfi, A Cybercrime International Report - A Silent Threat". The report describes how hackers and cybercriminals use blended attacks - a combination of RFI (remote file inclusion), LFI (local file inclusion), cross-server attack, and RCE (remote code execution) - to compromise websites and servers. In August 2010, Armin and the HostExploit team released a report providing an analysis of Demand Media's persistent position as "No 1 Bad Host" in HostExploit’s Top 50 Bad Hosts list.


Other considerations

Armin has spoken to audiences at
Cambridge University The University of Cambridge is a Public university, public collegiate university, collegiate research university in Cambridge, England. Founded in 1209, the University of Cambridge is the List of oldest universities in continuous operation, wo ...
and
Tallinn Tallinn is the capital city, capital and List of cities in Estonia, most populous city of Estonia. Situated on a Tallinn Bay, bay in north Estonia, on the shore of the Gulf of Finland of the Baltic Sea, it has a population of (as of 2025) and ...
,
Estonia Estonia, officially the Republic of Estonia, is a country in Northern Europe. It is bordered to the north by the Gulf of Finland across from Finland, to the west by the Baltic Sea across from Sweden, to the south by Latvia, and to the east by Ru ...
,
APWG The Anti-Phishing Working Group (APWG) is an international consortium focused on providing guidance and collecting data to reduce the risks of fraud and identity theft caused by phishing and related incidents. It was founded in 2003 by a US-based ...
, NATO CCDOE and the
Italian Senate The Senate of the Republic (), or simply the Senate ( ), is the upper house of the bicameral Italian Parliament, the lower house being the Chamber of Deputies. The two houses together form a perfect bicameral system, meaning they perform iden ...
, among others, on subjects ranging from the RBN, "Pocket Botnets" and "The Son of Stuxnet". He is a regular commentator on cybercrime and cybersecurity He took part in a BBC World Service program on hacking in July 2011. He was a regular contributor on security topics to the website Internet Evolution. At a workshop held at the 2015 ARES Conference in Toulouse, France, Armin presented the jointly authored paper, '2020 Cybercrime Economic Costs: No Measure No Solution', a result of the EU FP7 Projec
CyberROAD
Armin presented on the subject of 0-Day Vulnerabilities and
Cybercrime Cybercrime encompasses a wide range of criminal activities that are carried out using digital devices and/or Computer network, networks. It has been variously defined as "a crime committed on a computer network, especially the Internet"; Cyberc ...
at the same venue. Presentations on the subjects of Cyber Threat Intelligence (CTI) and cyber security metrics are regularly delivered at conferences includin
ARES 2018
at Hamburg, Germany, where Armin represented th
Criminal Use of Information Hiding Initiative (CUING)
In October 2018, Armin presented at th
Global IEEE 5G-IoT Summit
Marrakesh, on the subject of IOT devices. Armin regularly participates in EU funded projects ( FP7 and H2020) such a
ACDC
2013–2015
SWEPT
2014–2017
CyberROAD
2015–2017
SISSDEN
2016–2019, an
SAINT
2017–2019. Armin is a member of th
ENISA Threat Landscape Stakeholder Group
. Armin has been cited in books on cybercrime and
cyberwarfare Cyberwarfare is the use of cyberattack, cyber attacks against an enemy State (polity), state, causing comparable harm to actual warfare and/or disrupting vital computer systems. Some intended outcomes could be espionage, sabotage, propaganda, ...
.


HostExploit

HostExploit was set up by Armin as an offshoot from the RBN blog to explore wider cybercrime themes. It operates as an open source community project to inform on topics relating to cybercrime with links to daily news items, articles and reports written by Jart Armin and others. HostExploit reports are regularly cited in academic research papers."Wide-area Routing Dynamics of Malicious Networks"
/ref>


References


External links


HostExploit Web SiteRBN Blog
{{DEFAULTSORT:Armin, Jart Writers about computer security Living people Year of birth missing (living people) Place of birth missing (living people)