Source: Krebs on Security
Experts from across the security industry collaborated this week to quarantine more than 110,000 Microsoft Windows PCs that were infected with the Khelios worm, a contagion that forces infected PCs to blast out junk email advertising rogue Internet pharmacies.
Posts tagged “Botnets”
Source: Krebs on Security
Twitter bots — zombie accounts that auto-follow and send junk tweets hawking questionable wares and services — can be an annoyance to anyone who has even a modest number of followers.
Source: Adrian Kingsley-Hughes, ZDNet
Security firm Symantec has uncovered a massive botnet that may have lured millions of unwitting Android users into downloading malware infected apps from the official Google Android Market.
Source: Brian Krebs, Krebs on Security
In a post to the Official Microsoft Blog, the company identified 31-year-old Andrey N. Sabelnikov of St. Petersburg, Russia as responsible for the operations of the botnet.
Microsoft this week provided an update to its ongoing investigation of the Kelihos botnet case and now alleges that a Russian citizen is responsible for the creation and operation of the botnet.
A new Department of Homeland Security (DHS) and National Institute for Standards and Technology (NIST) effort to establish voluntary best practices for how ISPs should notify their customers whose machines are part of a botnet has met with some resistance from the service provider community.
Source: Laura Atkins, CircleID
They’re a bit late to the party, though. Most of the major commercial ISPs have been implementing significant botnet controls for many years now. Control involves a number of different techniques, but notification has been designed into the system from day 1.
The Center for Strategic & International Studies held a live discussion on October 4 to mark the launch of the new U.S. Department of Commerce and U.S. Department of Homeland Security effort to promote the creation of a voluntary industry code of conduct to address the detection, notification, and mitigation of botnets.
Microsoft grabbed headlines Wednesday with its report about the successful takedown of the Kelihos botnet, but while the company detailed the achievements of its Digital Crimes Unit, it failed to mention the major role security firm Kaspersky Lab played in the operation.
Dennis Fisher talks with Kaspersky Lab Researcher Tillmann Werner about the takedown of the Kelihos botnet, the network’s unique multi-tiered architecture, its custom protocol and the ethics and legality of pushing updates to disable bots on users’ machines.