botnets

Hacker who infected 72K computers gets prison sentence

After pleading guilty last year to creating a botnet that wreaked havoc on about 72,000 computers, Joshua Schichtel was sentenced to prison today. The Department of Justice announced that Schichtel received a 30-month prison sentence for "selling command-and-control access to and use of thousands of malware-infected computers."

Schichtel was a unique hacker. Rather than infecting computers for his own benefit, he instead sold botnets to customers who must have not had the tech know-how to create their own malware.

"Individuals who wanted to infect computers with various different types of malicious software (malware) would contact Schichtel … Read more

Apple's iOS and Android are new favorite malware victims

The online world is under siege. Computers, laptops, and mobile devices are increasingly being attacked by worms, viruses, botnets, Trojans, spam, and more.

According to a new report by McAfee (PDF), Malware is multiplying at a faster pace now than any other time in the last four years. There has been a 1.5 million increase in malware over last quarter, along with growth of newer threats, including "ransomware" attacks, thumb drive corrupters, and botnets.

While Windows PCs remain the hardest hit, there's a growing trend of attacks on Apple's Mac devices and Android smartphones.

"… Read more

Watching the crooks: Researcher monitors cyber-espionage ring

LAS VEGAS -- Researchers have uncovered a huge amount of malware and registered domains being used by criminals linked to China who are conducting cyber-espionage on a wide range of government, industry, and human rights activists.

The growing menace from these "Advanced Persistent Threats" is detailed in a report unveiled today called "Chasing APT." In an interview at the Black Hat security conference here, Joe Stewart, director of malware research at Dell Secureworks Counter Threat Unit, said that over the last 18 months he's been monitoring attacks designed to steal data from organizations around the … Read more

Experts take down Grum spam botnet, world's third largest

Computer-security experts took down the world's third-largest botnet, which they say was responsible for 18 percent of the world's spam.

Command-and-control servers in Panama and the Netherlands pumping out up to 18 billion spam messages a day for the Grum botnet were taken down Tuesday, but the botnet's architects set up new servers in Russia later in the day, according to a New York Times report. California-based security firm FireEye and U.K.-based spam-tracking service SpamHaus traced the spam back to servers in Russia and worked with local ISPs to shut down the servers, which ran … Read more

Android botnet claim in dispute

Researchers at Microsoft and Sophos say they believe malware-infected Android phones are sending spam via Yahoo Mail accounts as part of a botnet, but Google and mobile firm Lookout say there could be other explanations.

Terry Zink, a program manager for Microsoft Forefront Online Security, said in a blog post two days ago that he had found some spam samples that had this Message-ID:

"<1341147286.19774.androidMobile@web140302.mail.bf1.yahoo.com>."

That was followed by speculation from Chester Wisniewski at Sophos, who wrote in a blog post today: "It is likely that Android users … Read more

Microsoft identifies two Zeus botnet crime ring suspects

Microsoft released the identities of two alleged members of the Zeus botnet crime ring, which used an estimated 13 million computers infected with the malware to steal more than $100 million.

The botnet operators used the software to show fake or modified Web sites when victims tried to use real banking sites, log their keystrokes to capture victims' identity information, and then use that information to steal money from victims' accounts.

The software giant announced today it had amended a complaint last week to add Yevhen Kulibaba and Yuriy Konovalenko as defendants. The pair is already serving time in the … Read more

Facebook warns users of the end of the Internet via DNSChanger

Don't be alarmed if you open up your Facebook account and get a large warning message that says, "Your computer or network might be infected."

Facebook announced today that its security team has joined a consortium of computer security experts working to clean up malicious malware called DNSChanger. As a result, the social network can now notify victims, who may have infected computers, and help them figure out how to rid their networks of the botnet. (See full warning below).

"Facebook's Product Security Team is working constantly to protect users from malicious content and malware … Read more

White House prepares to convene anti-botnet summit

The White House is planning to convene a cybersecurity summit Wednesday morning to discuss ways to counter botnets, which have emerged as the leading Internet security threat.

Industry representatives are planning to announce a nine-point plan that includes sharing more information about identifying botnets -- and how to help their customers remove the malware from their computers.

The forum, which will be closed to the press but Webcast on the White House Web site starting at 5:30 a.m. PT, will be hosted by Howard Schmidt, who said earlier this month he will retire after three years as cybersecurity … Read more

Notorious Bredolab virus creator is sentenced to prison

The man who elaborated and then spread the Bredolab virus, which infected roughly 30 million computers worldwide, was sentenced to four years in prison by an Armenian district court yesterday, according to Wired.

Georgy Avanesov, a 27-year-old Russian citizen of Armenian descent, was first nabbed in 2010 after Dutch authorities took down a large Bredolab network made up of about 140 different infected computer servers. Shortly after this seizure, global spam levels fell by 12 percent.

Avanesov confessed that he developed the Bredolab malware in 2009 and made it available to others via computer servers in Holland and France, according … Read more