botnets

Microsoft has found malware on new computers its employees purchased in various cities in China as part of an investigation into the security of the supply chain. That finding led researchers to a botnet called Nitol and a court order giving the company permission to take technical measures to disrupt the botnet.

The effort, dubbed Operation b70, began in August 2011 when it decided to see if there was any merit to claims that counterfeit software and malware were being installed on computers by suppliers before they hit the retail shelves in China. So, the company had employees go into … Read more

After pleading guilty last year to creating a botnet that wreaked havoc on about 72,000 computers, Joshua Schichtel was sentenced to prison today. The Department of Justice announced that Schichtel received a 30-month prison sentence for "selling command-and-control access to and use of thousands of malware-infected computers."

Schichtel was a unique hacker. Rather than infecting computers for his own benefit, he instead sold botnets to customers who must have not had the tech know-how to create their own malware.

"Individuals who wanted to infect computers with various different types of malicious software (malware) would contact Schichtel … Read more

The online world is under siege. Computers, laptops, and mobile devices are increasingly being attacked by worms, viruses, botnets, Trojans, spam, and more.

According to a new report by McAfee (PDF), Malware is multiplying at a faster pace now than any other time in the last four years. There has been a 1.5 million increase in malware over last quarter, along with growth of newer threats, including "ransomware" attacks, thumb drive corrupters, and botnets.

While Windows PCs remain the hardest hit, there's a growing trend of attacks on Apple's Mac devices and Android smartphones.

"… Read more

LAS VEGAS -- Researchers have uncovered a huge amount of malware and registered domains being used by criminals linked to China who are conducting cyber-espionage on a wide range of government, industry, and human rights activists.

The growing menace from these "Advanced Persistent Threats" is detailed in a report unveiled today called "Chasing APT." In an interview at the Black Hat security conference here, Joe Stewart, director of malware research at Dell Secureworks Counter Threat Unit, said that over the last 18 months he's been monitoring attacks designed to steal data from organizations around the … Read more

Computer-security experts took down the world's third-largest botnet, which they say was responsible for 18 percent of the world's spam.

Command-and-control servers in Panama and the Netherlands pumping out up to 18 billion spam messages a day for the Grum botnet were taken down Tuesday, but the botnet's architects set up new servers in Russia later in the day, according to a New York Times report. California-based security firm FireEye and U.K.-based spam-tracking service SpamHaus traced the spam back to servers in Russia and worked with local ISPs to shut down the servers, which ran … Read more

Researchers at Microsoft and Sophos say they believe malware-infected Android phones are sending spam via Yahoo Mail accounts as part of a botnet, but Google and mobile firm Lookout say there could be other explanations.

Terry Zink, a program manager for Microsoft Forefront Online Security, said in a blog post two days ago that he had found some spam samples that had this Message-ID:

"<1341147286.19774.androidMobile@web140302.mail.bf1.yahoo.com>."

That was followed by speculation from Chester Wisniewski at Sophos, who wrote in a blog post today: "It is likely that Android users … Read more

Microsoft released the identities of two alleged members of the Zeus botnet crime ring, which used an estimated 13 million computers infected with the malware to steal more than $100 million.

The botnet operators used the software to show fake or modified Web sites when victims tried to use real banking sites, log their keystrokes to capture victims' identity information, and then use that information to steal money from victims' accounts.

The software giant announced today it had amended a complaint last week to add Yevhen Kulibaba and Yuriy Konovalenko as defendants. The pair is already serving time in the … Read more

Don't be alarmed if you open up your Facebook account and get a large warning message that says, "Your computer or network might be infected."

Facebook announced today that its security team has joined a consortium of computer security experts working to clean up malicious malware called DNSChanger. As a result, the social network can now notify victims, who may have infected computers, and help them figure out how to rid their networks of the botnet. (See full warning below).

"Facebook's Product Security Team is working constantly to protect users from malicious content and malware … Read more

The White House is planning to convene a cybersecurity summit Wednesday morning to discuss ways to counter botnets, which have emerged as the leading Internet security threat.

Industry representatives are planning to announce a nine-point plan that includes sharing more information about identifying botnets -- and how to help their customers remove the malware from their computers.

The forum, which will be closed to the press but Webcast on the White House Web site starting at 5:30 a.m. PT, will be hosted by Howard Schmidt, who said earlier this month he will retire after three years as cybersecurity … Read more