bot and botnet

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

Combating Botnets Using the Cisco ASA Botnet Traffic Filter

This paper discusses the nature of botnets, the threats they pose to today's networks, and how the Cisco Botnet Traffic Filter enables Cisco ASA appliances to fight botnets and to handle their dynamic nature. A botnet is a collection of autonomous software robots bots, typically malicious in nature, that operate...

Tags: Bot, Cisco Systems Inc., Botnet

White papers 2009-06-01

Botnet exploiting MS0867 flaws (Inside the botnets that never make the news)

Botnet exploiting MS0867 flaws Inside the botnets that never make the newsBlock IRC traffic completelyThat's the solution. IRC traffic has no place in business environments.Image 5...Did you do the obfuscating? If not, how do you know they're all on the same server?How pray tell?You're forgetting, any type of...

Tags: Internet Relay Chat (IRC), Stateful Packet Inspection, IRC traffic, IRC, BotNet

Discussion threads 2009-05-21

Operation Bot Roast: Too little too late

* Ryan Naraine is on vacation. Guest Editorial by Dr Jose NazarioThe US FBI has kicked off Operation Bot Roast this summer with the goal of addressing the botnet problem. Hurray for them,it's good that something is being done. However, this is probably not going to stop the botnet problem, and maybe...

Tags: Zero-day attacks, Vulnerability research, Viruses and Worms, Spyware and Adware, Spam and Phishing, Rootkits, Punditocracy, Pen testing, Patch Watch, Passwords, Open source, Mozilla, Microsoft, Metasploit, Hackers, Firefox, Exploit code, Data theft, Browsers, Botnets

Blog posts 2007-07-02

'Operation Bot Roast' nets million-strong botnet operation

Law enforcement authorities today announced the arrest of three men accused of using a million-strong botnet of hijacked computers for spam-related crime.The FBI said its "Operation Bot Roast" identified more than one million victim computer IP addresses being used in criminal activity."The FBI is working with our industry partners,...

Tags: Vulnerability research, Viruses and Worms, Spyware and Adware, Spam and Phishing, Rootkits, Privacy, Patch Watch, Passwords, Open source, Microsoft, Metasploit, Hackers, Firefox, Exploit code, Data theft, Browsers, Botnets

Blog posts 2007-06-13

DNS root server attack launched from Germany

DNS root server attack launched from Germanybotnets are very interesting ecosystemsBack about 5 years ago when they were first emerging, i experimented with a bot named "evilbot". I infected a few of my own test computers and then controlled them via a subseven IRC server chat room. At...

Tags: DNS, botnet, bot

Discussion threads 2007-02-22

Botnet drama: database theft, IM attacks, financial fraud

Are you a victim? If not, the guy next door might be. According to the story, two botnets claimed over 150,000 compromised machines, some with RATS remote administration tools installed and one machine being used "as a vehicle to fraudulently scan desktop and back-end systems to obtain credit card...

Tags: BotNet

Blog posts 2006-03-15

Additional Resources

New botnet hides commands as JPEG images

What, that's it?That's it for this article? No mention of how prolific it is; what defenses might exist; how to check for it's presence; anything?Without more information, you're fear-mongering. Next time, just type "Boo!".What, that's it? "Without more information, you're fear-mongering. Next time, just type "Boo!"."I think its called, getting...

Tags: BotNet, JPEG, botnet, JPEG Images

Discussion threads 2009-09-30

Brazilian ID thieves using Twitter as botnet command channel

You have got to be kidding me?Now we have Twitter being used to command botnets? When is this going to end? Actually, I've already answered my own question: never!Not until PC's are built from the ground up to NEVER EVER automatically run something until they are given permission by the...

Tags: Microsoft Windows Vista (Longhorn), E-mail, Web site development, Brazilian ID, Brazilian ID thieve, Twitter, click ok

Discussion threads 2009-08-14

Your Botnet Is My Botnet: Analysis of a Botnet Takeover

Botnets, networks of malware-infected machines that are controlled by an adversary, are the root cause of a large number of security problems on the Internet. A particularly sophisticated and insidious type of bot is Torpig, a malware program that is designed to harvest sensitive information (such as bank account and...

Tags: Credit Card, Malware, Association For Computing Machinery, Bot, Analysis, Spyware, Adware & Malware, Cyberthreats, Sales Channel, Financial Services, Security, Sales

White papers 2009-08-14

Reseachers run one million virtual machines to help flight botnet problem

LateYou are like 2 weeks late to the story.http://www.hpcwire.com/offthewire/Sandia-Computer-Scientists-Boot-One-Million-Linux-Kernels-as-Virtual-Machines-51891292.htmlAt the risk of starting a flame...war, shouldn't they be running Windows kernels? If they are wanting to mimic a real world botnet scenario then they would need to run Windows. Since 90% or so PC's run Windows and Windows is definitely...

Tags: PRODUCTIVITY, SECURITY, Operating systems, virtual machine, infection, botnet, distributed denial of service, Microsoft Windows, computer

Discussion threads 2009-08-09

Fake Microsoft patch malware campaign makes a comeback

Fake Microsoft patch malware campaign makes a comebackHacked Linux servers often are botnet mastersand many linux machines are, oblivious to the user, participants in botnets. http://lwn.net/Articles/222153/http://www.techworld.com/security/news/index.cfm?RSS&NewsID=10251Oh, sure. If you say so.ntirresponsible users (or admins, in this case) regardless of OSA desktop user to clicks on a web link to...

Tags: INTERNET, Operating systems, Cyberthreats, Spyware, adware & malware, OPEN SOURCE, UNIX, OK Here, Linux, malware, desktop user, Microsoft Windows

Discussion threads 2009-08-05

Botnet awakes in further South Korean attack

Botnet awakes in further South Korean attackLets ban Windows and go hard core Linux.Because we know that the hackers will give up instantly if everything was Linux. They would simply give in and go out and get real jobs.NOT.Whats the difference, Windows today, Linux tomorrow, in the long run...

Tags: SECURITY, Operating systems, Hacking, attack, Linux, hacker, Microsoft Windows, computer

Discussion threads 2009-07-10

CA antivirus trashing Windows system files

CA antivirus trashing Windows system filesCA malware problemI do not have this problem on my XP machine because I have Ubuntu dual booted and run Linux while online. I use my XP for my local computing needs.Therefore I do not need anti virus software.Had CA, had a similar problemI...

Tags: Viruses and worms, Cyberthreats, SECURITY, Microsoft Windows, Computer Associates International Inc., antivirus, CA antiviru, virus, Windows System Files

Discussion threads 2009-07-09

FTC shuts down notorious botnet ISP

The Federal Trade Commission FTC has shut down a U.S.-based Internet Service Provider for recruiting, hosting and actively participating in the distribution of spam, child pornography, and other harmful electronic content. Pricewert LLC (also known as 3FN and APS Telecom) was shut down by a district court...

Tags: Internet Service Provider, Server, Bot, FTC, Internet Service Providers (ISPs), Viruses And Worms, Internet, Security, Ryan Naraine

Blog posts 2009-06-04

Pirated Windows 7 leads to malware, botnet

Pirated Windows 7 leads to malware, botnetIdiots....Who are the morons pirating something given away for free?Security an after thought with Windows ;)Super secure Windows where malware is a feature not an option!dumb peoplesome people are so stupid. why the hell would they download windows 7 from a torrent site...

Tags: Spyware, adware & malware, Cyberthreats, Viruses and worms, SECURITY, malware, Pirated Windows 7, server

Discussion threads 2009-05-12

New Mac OS X email worm discovered

A newly discovered email worm dubbed OSX/Tored-A once again puts the spotlight on the potential worm-ability, and malware spreading tactics targeting Apple's OS X. The worm propagates through emails harvested from infected hosts, and has a backdoor functionality allowing its author to perform the following actions if...

Tags: E-mail Worm, Apple Macintosh, Malware, Worm, Apple Mac OS X, E-mail, Cyberthreats, Spyware, Adware & Malware, Viruses And Worms, Apple Mac OS, Security, Operating Systems, Software, Online Communications, Dancho Danchev

Blog posts 2009-05-07

McAfee: Welcome to the United States of Zombie PCs

McAfee: Welcome to the United States of Zombie PCsWouldn't it be best to inform peopleIf they have zombie PC's in their homes? I mean, it isn't like the ISP's couldn't see that "Hey, this data is shooting to a known zombie PC site.... let's inform the person who uses this...

Tags: Zombie PC, McAfee Inc.

Discussion threads 2009-05-05

'Psyb0t' worm infects Linksys, Netgear home routers, modems

More information has surfaced about the botnet "psyb0t," the first known to be capable of directly infecting home routers and cable/DSL modems. It was first observed infecting a Netcomm NB5 modem/router in Australia. Members of the website DroneBL, a real-time IP tracker that scans...

Tags: Router, Worm, NetGear, Modem, Linksys Inc., DroneBL, Command & Control Channel, Routers & Switches, Network Technology, Networking, Andrew Nusca

Blog posts 2009-03-25

Ex-botnet master hired by TelstraClear

Remember Owen Thor Walker AKILL that got busted in the FBI's "Bot Roast" investigation for operating a 1.3 million hosts botnet in 2007, and even once considered to be offered a job as a cybercrime fighter by detectives impressed by his mediocre botnet management skills? Well, it...

Tags: TelstraClear Ltd., Internet, Phishing, Recruitment & Selection, Security, Spam And Phishing, Human Resources, Workforce Management, Dancho Danchev

Blog posts 2009-03-24

Stealthy router-based botnet worm squirming

Stealthy router-based botnet worm squirmingAnd there are SOOO many routers with default "admin" password out there!Something tells me that shipping hardware or software with default passwords is hacker friendly.How many have WAN access by default?I have not seen a router that comes pre-configured with allow control over WAN activated by...

Tags: Routers & switches, Network technology, NETWORKING, Cyberthreats, router, password, Linux, worm

Discussion threads 2009-03-23