Google Groups Used To Control Botnets 63
oDDmON oUT writes "'Maintaining a reliable command and control (C&C) structure is a priority for back door Trojan writers. ... Symantec has observed an interesting variation on this concept in the wild. A back door Trojan that we are calling Trojan.Grups has been using the Google Groups newsgroups to distribute commands,' writes Symantec employee Gavin O Gorman. He goes on to state that 'the Trojan itself is quite simple. It is distributed as a DLL,' and while the decrypted commands indicate it is used 'for reconnaissance and targeted attacks,' he does go on record as saying, 'It's worth noting that Google Groups is not at fault here; rather, it is a neutral party. The authors of this threat have chosen Google Groups simply for its bevy of features and versatility.'"
This just in! (Score:5, Funny)
Breaking news today:
Free Web Service Abused, Professionals Shocked
News at 11.
This just in! (Score:2, Funny)
Breaking news today:
Windows computers still being infected via DLLs, professionals shocked.
News at 11:05.
"oops, (Score:4, Funny)
Re:So? (Score:5, Funny)
-----BEGIN BOTNET COMMAND OVER /.-----
Version: v1.0.0
TEx2OTNZRm9 mb1l4Q1B5N25P b3dxSjRCMkhSS WhzdDFBbV Ezd2lGSWtY R1pEMWJ qUHdtcG9z cktLNHd5 cDBZeg==
-----END BOTNET COMMAND OVER /.-----
Another sign Linux just isn't ready for prime time (Score:5, Funny)
It is distributed as a DLL...
Until Linux can run botnet dll's and find a place among p0wn3d hacker machines, it's going to remain a hobbyist toy. It's so wasteful and inefficient to hack computers one at a time.
Next up: Botnets surfing the google wave (Score:5, Funny)
Who needs IRC or usenet or google groups when you can surf the google wave?
Wonder whether this will get you access?
Google Wave Sandbox Developer Signup [google.com]
Name: xxxx
....
What do you intend to build?
Botnet
Re:Why not P2P? (Score:5, Funny)
What would be so hard for botnet owners to make a peer to peer botnet rather than using servers?
That would attract the wrath of the RIAA.