Slashdot is powered by your submissions, so send in your scoop

 


Forgot your password?
Close
typodupeerror
×
Security Worms The Internet

CA Warns Of Massive Botnet Attack 357

Posted by Zonk from the watch-your-heads dept.
m4dm4n wrote to mention a story running on The Register which describes a coordinated malware attack designed to establish a massive botnet. From the article: "The attack involves three different Trojans - Glieder, Fantibag and Mitglieder - in a co-ordinated assault designed to establish a huge botnet under the control of hackers. Computer Associates reckons that access to the compromised PCs is for sale on a black market, at prices as low as five cents per PC."
This discussion has been archived. No new comments can be posted.

CA Warns Of Massive Botnet Attack More

CA Warns Of Massive Botnet Attack

Comments Filter:

  • I don't get it (Score:1, Informative)

    by giorgiofr ( 887762 ) on Friday June 03, 2005 @11:39AM (#12714338)
    Impossible as it is to track the perpetrators of these actions, I still don't see what prevents the police from tracking the payments! I mean, it's not like the dudez meet in an airport and swap a case filled with money with one filled with IPs... or is it? If you (the police) monitor the marketplace, buy the botnet, then track your (bogus) payment to the dudez, all should be solved pretty quickly.

    ...Profit?

  • Re:This is interesting... (Score:5, Informative)

    by WhiteWolf666 ( 145211 ) <sherwinNO@SPAMamiran.us> on Friday June 03, 2005 @11:52AM (#12714468) Homepage Journal
    I think it would be fine to move to OpenBSD, and keep all your settings on 'paranoid'.

    It does ship *secure* out of the box. No remote exploits.

    Don't open any ports until you get the hang of it.

    Either way, it won't be *more* dangerous than Windows :)

  • Re:Wrong career (Score:3, Informative)

    by Hank Chinaski ( 257573 ) on Friday June 03, 2005 @11:52AM (#12714472) Homepage
    Glieder = limbs
    Mitglieder = Members

  • Re:How does the money change hands? (Score:5, Informative)

    by snorklewacker ( 836663 ) on Friday June 03, 2005 @12:27PM (#12714868)
    Swiss banks are so 20th century. They're expensive to open, and they actually cooperate with Interpol on money laundering.

    Caymans are where it's at.

  • Rent botnets here! $0.05/machine (Score:5, Informative)

    by Animats ( 122034 ) on Friday June 03, 2005 @12:29PM (#12714909) Homepage
    You, too, can rent your own botnet. Just visit one of these spammer-run sites.

    SpamForum [spamforum.biz]

    SpecialHam [specialham.com]

    And the new WildBiz [wldbiz.com].

    WildBiz does not require registration; the other two do. Just enter the forums and look under "Proxy Lists". Typical ads:

    • "Hello everybody here...
      First of all Hi to all of my seniorshooters here..
      Having good collection of fresh Proxies and got DM ["Dark Mailer" .. ed] Latest Version (Full Version) at really cheap rate.
      DM Latest version (Full) for $49
      Fresh Proxies $50 for 500 proxies
      dmandproxies@iamdns.com [mailto]
    • Today's Fresh Proxies
      61.246.226.69:3128@TUNNEL$GOOD$20297$Australia
      81.33.4.70:3128@TUNNEL$GOOD$2953$Spain
      61.246.226.69:3128@TUNNEL$GOOD$20297$Australia
      218.208.247.81:3128@TUNNEL$GOOD$15219$Malaysia
      219.144.194.74:1080@SOCKS4$GOOD$1125$China
      66.154.54.215:80@TUNNEL$GOOD$4157$United States
      66.154.54.224:80@TUNNEL$GOOD$1266$United States
      ...
      We provide Hourly Updated Fresh Proxy Lists, which can be used for bulk mailing ... standard port proxies and non-standard port proxies are both provided, become our members, and download fresh proxy lists hourly. USD 50 per month, then you can access our proxies database . proxies updated from every 15 minutes to 30 minutes . For more infomation, please contact proxylists@iamdns.com [mailto]

    That's how you market a botnet.

    Yes, these operations are addressed to wannabe spammers. But the fact that they're advertised openly indicates how weak enforcement is.

Slashdot Top Deals

Those who can, do; those who can't, write. Those who can't write work for the Bell Labs Record.

Close