Jart Armin is an investigator, analyst and writer on

cybercrime A cybercrime is a crime that involves a computer or a computer network.Moore, R. (2005) "Cyber crime: Investigating High-Technology Computer Crime," Cleveland, Mississippi: Anderson Publishing. The computer may have been used in committing the ...

and

computer security Computer security, cybersecurity (cyber security), or information technology security (IT security) is the protection of computer systems and networks from attack by malicious actors that may result in unauthorized information disclosure, the ...

, and researcher of cybercrime mechanisms and assessment.

Life

Armin first came into the public eye in 2007 from his exposure of the RBN (Russian Business Network). Throughout 2007, via a dedicated blog entitled RBNExploit, he provided reports and analysis on the undercover operations of the RBN criminal gang, despite constant DDoS attempts and artificially-created mirror websites. It was via the RBN blog that Armin provided the first reports of cyber attacks, used in conjunction with the invasion of Georgia by Russian troops, three days in advance of the attack in August 2008. As an advocate of an

open source Open source is source code that is made freely available for possible modification and redistribution. Products include permission to use the source code, design documents, or content of the product. The open-source model is a decentralized sof ...

community approach to the fight against cybercrime, Armin established HostExploit as an educational website aimed at exposing internet bad actors and cybercriminal organizations which deliver

crimeware Crimeware is a class of malware designed specifically to automate cybercrime. Crimeware (as distinct from spyware and adware) is designed to perpetrate identity theft through social engineering or technical stealth in order to access a comput ...

through hosts and registrars.

The Reports

In August 2008, Jart Armin, via HostExploit, published a report " Atrivo - Cyber Crime USA","Atrivo - Cyber Crime USA"
- HostExploit Report stating that Atrivo (aka Intercage) - a

Concord, California Concord ( ) is the largest city in Contra Costa County, California. According to an estimate completed by the United States Census Bureau, the city had a population of 129,295 in 2019 making it the eighth largest city in the San Francisco Ba ...

-based website hosting provider deliberately allowed cyber criminals to use its services. This brought about the shutdown of Atrivo with a related 10% drop in botnet and spam activity worldwide. In November 2008, Armin published a further report, "

McColo McColo was a US-based web hosting service provider that was, for a long time, the source of the majority of spam-sending activities for the entire world. In late 2008, the company was shut down by two upstream providers, Global Crossing and Hur ...

- Cyber Crime USA", with contributions from

StopBadware StopBadware was an anti-malware nonprofit organization focused on making the Web safer through the prevention, mitigation, and remediation of badware websites. It is the successor to StopBadware.org, a project started in 2006 at the Berkman Cente ...

Trend Micro is an American-Japanese multinational cyber security software company with global headquarters in Tokyo, Japan and Irving, Texas, United State.Other regional headquarters and R&D centers are located around East Asia, Southeast Asia, Europe, and ...

, Emerging Threats,

KnujOn KnujOn ("no junk" spelled backwards, and pronounced "new john") was a project involved in Internet security. KnujOn targeted spam at its root, attacking the illicit activities that spammers derive their revenue from. To that end, KnujOn ran an auto ...

, Sunbelt, CastleCops,

The Spamhaus Project The Spamhaus Project is an international organisation based in the Principality of Andorra, founded in 1998 by Steve Linford to track email spammers and spam-related activity. The name ''spamhaus'', a pseudo-German expression, was coined by Lin ...

Arbor Networks Arbor Networks is a software company founded in 2000"Arbor Netwo ...

, Malwaredomains, Threat Expert, SecureWorks, aa419, Malwaredatabase and Robtex. The report, and press coverage used in conjunction to the report, were instrumental in the demise of

by revealing the web hosting service provider to be deliberately funding criminal activities and illegal child sexual abuse content. The cybercriminal activities of

EstDomains EstDomains was a website hosting provider and a Delaware corporation headquartered in downtown Tartu, Estonia. EstDomains was known for hosting websites with malware, child pornography, and other illegal content. Brian Krebs of ''The Washingto ...

were tracked by Armin and his allies in RBN blog postings and HostExploit reports. Exposing the link between the RBN and EstDomains in the October 2008 report entitled "RBN – Farewell to EstDomains" lead to the operational closure of the

business and to its customer base moving to the Asian registrar Directi. In a joint venture with Andrew Martin of MartinSecurity.net, Armin issued the report "Real Host Latvia – RBN Resurgence or Clone?" in August 2009, providing further evidence of continuing RBN involvement in internet fraud. Telia, the hosting registrar, suspended all involvement with Real Host when provided with the evidence contained within the report. In November 2009, in another joint venture with Andrew Martin and Scott Logan, Jart Armin and HostExploit released a report called "MALfi, A Cybercrime International Report - A Silent Threat". The report describes how hackers and cybercriminals use blended attacks - a combination of RFI (remote file inclusion), LFI (local file inclusion), cross-server attack, and RCE (remote code execution) - to compromise websites and servers. In August 2010, Armin and the HostExploit team released a report providing an analysis of Demand Media's persistent position as "No 1 Bad Host" in HostExploit’s Top 50 Bad Hosts list.

Other considerations

Armin has spoken to audiences at

Cambridge University , mottoeng = Literal: From here, light and sacred draughts. Non literal: From this place, we gain enlightenment and precious knowledge. , established = , other_name = The Chancellor, Masters and Schola ...

and

Tallinn Tallinn () is the most populous and capital city of Estonia. Situated on a bay in north Estonia, on the shore of the Gulf of Finland of the Baltic Sea, Tallinn has a population of 437,811 (as of 2022) and administratively lies in the Harju ' ...

Estonia Estonia, formally the Republic of Estonia, is a country by the Baltic Sea in Northern Europe. It is bordered to the north by the Gulf of Finland across from Finland, to the west by the sea across from Sweden, to the south by Latvia, a ...

APWG The Anti-Phishing Working Group (APWG) is an international consortium that attempts to eliminate fraud and identity theft caused by phishing and related incidents It brings together businesses affected by phishing attacks: security products and se ...

, NATO CCDOE and the

Italian Senate The Senate of the Republic ( it, Senato della Repubblica), or simply the Senate ( it, Senato), is the upper house of the bicameral Italian Parliament (the other being the Chamber of Deputies). The two houses together form a perfect bicameral sy ...

, among others, on subjects ranging from the RBN, "Pocket Botnets" and "The Son of Stuxnet". He is a regular commentator on cybercrime and cybersecurity He took part in a BBC World Service program on hacking in July 2011. He was a regular contributor on security topics to the website

Internet Evolution The Internet (or internet) is the global system of interconnected computer networks that uses the Internet protocol suite (TCP/IP) to communicate between networks and devices. It is a '' network of networks'' that consists of private, pub ...

. At a workshop held at the 2015 ARES Conference in Toulouse, France, Armin presented the jointly authored paper, '2020 Cybercrime Economic Costs: No Measure No Solution', a result of the EU FP7 Projec
CyberROAD
Armin presented on the subject of 0-Day Vulnerabilities and

Cybercrime A cybercrime is a crime that involves a computer or a computer network.Moore, R. (2005) "Cyber crime: Investigating High-Technology Computer Crime," Cleveland, Mississippi: Anderson Publishing. The computer may have been used in committing the ...

at the same venue. Presentations on the subjects of Cyber Threat Intelligence (CTI) and cyber security metrics are regularly delivered at conferences includin
ARES 2018
at Hamburg, Germany, where Armin represented th
Criminal Use of Information Hiding Initiative (CUING)
In October 2018, Armin presented at th
Global IEEE 5G-IoT Summit
Marrakesh, on the subject of

IOT The Internet of things (IoT) describes physical objects (or groups of such objects) with sensors, processing ability, software and other technologies that connect and exchange data with other devices and systems over the Internet or other com ...

devices. Armin regularly participates in EU funded projects ( FP7 and H2020) such a
ACDC
2013–2015
SWEPT
2014–2017
CyberROAD
2015–2017
SISSDEN
2016–2019, an
SAINT
2017–2019. Armin is a member of th
ENISA Threat Landscape Stakeholder Group
Armin has been cited in books on cybercrime and

cyberwarfare Cyberwarfare is the use of cyber attacks against an enemy state, causing comparable harm to actual warfare and/or disrupting vital computer systems. Some intended outcomes could be espionage, sabotage, propaganda, manipulation or economic war ...

HostExploit

HostExploit was set up by Armin as an offshoot from the RBN blog to explore wider cybercrime themes. It operates as an open source community project to inform on topics relating to cybercrime with links to daily news items, articles and reports written by Jart Armin and others. HostExploit reports are regularly cited in academic research papers."Wide-area Routing Dynamics of Malicious Networks"
/ref>

References

External links

HostExploit Web SiteRBN Blog
{{DEFAULTSORT:Armin, Jart Writers about computer security Living people Year of birth missing (living people) Place of birth missing (living people)