Fantastic interview over at Philosecurity with Matt Knox, a Ruby instructor and coder who happened to find himself writing adware for Direct Revenue, which was directly responsible for infecting millions of computers with invasive pop-ups.
He’s repented, though.
I was utterly and grindingly broke for a little while. I started working on SPAM filtering software. That work got noticed by [Direct Revenue], who hired me to analyze their distribution chain. For a little while, the site through which all their ads ran was something like top 20 in Alexa. Monstrous, really huge traffic. Maybe 4 or 5 months into my tenure there, a virus came out that was disabling some of the machines that we had adware on. I said, “I know enough C that I could kick the virus off the machines,” and I did. They said “Wow, that was really cool. Why don’t you do that again?” Then I started kicking off other viruses, and they said, “That’s pretty cool that you kicked all the viruses off. Why don’t you kick the competitors off, too?”
It was funny. It really showed me the power of gradualism. It’s hard to get people to do something bad all in one big jump, but if you can cut it up into small enough pieces, you can get people to do almost anything.
I’ll tell you, we’ve got some community projects planned for BBG over the course of the next year, and that’s exactly what we’re counting on.