Members
  • Total Members: 12818
  • Latest: martin
Stats
  • Total Posts: 28534
  • Total Topics: 8240
  • Online Today: 1027
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)












Author Topic: America's 10 most wanted botnets  (Read 3709 times)

0 Members and 1 Guest are viewing this topic.

georgecloner

  • SCF VIP Member
  • *****
  • Posts: 171
  • KARMA: 16
  • Gender: Male
America's 10 most wanted botnets
« on: 25. July 2009., 13:10:29 »

Ranked by size and strength, these are the 10 most damaging botnets in the U.S.

Botnet attacks are increasing, as cybercrime gangs use compromised computers to send spam, steal personal data, perpetrate click fraud and clobber Web sites in denial-of-service attacks. Here's a list of America's 10 most wanted botnets, based on an estimate by security firm Damballa of botnet size and activity in the United States.

No. 1: Zeus

Compromised U.S. computers: 3.6 million

Main crime use: The Zeus Trojan uses key-logging techniques to steal sensitive data such as user names, passwords, account numbers and credit card numbers. It injects fake HTML forms into online banking login pages to steal user data.

No. 2: Koobface

Compromised U.S. computers: 2.9 million

Main crime use: This malware spreads via social networking sites MySpace and Facebook with faked messages or comments from "friends." When a user is enticed into clicking on a provided link to view a video, the user is prompted to obtain a necessary update, like a codec -- but it's really malware that can take control over the computer.

No. 3: TidServ

Compromised U.S. computers: 1.5 million

Main crime use: This downloader Trojan spreads through spam e-mail, arriving as an attachment. It uses rootkit techniques to run inside common Windows services (sometimes bundled with fake antivirus software) or in Windows safe mode, and it can hide most of its files and registry entries.

No. 4: Trojan.Fakeavalert

Compromised U.S. computers: 1.4 million

Main crime use: Formerly used for spamming, this botnet has shifted to downloading other malware, with its main focus on fake alerts and rogue antivirus software.

No. 5: TR/Dldr.Agent.JKH

Compromised U.S. computers: 1.2 million

Main crime use: This remote Trojan posts encrypted data back to its command-and-control domains and periodically receives instruction. Often loaded by other malware, TR/Dldr.Agent.JKH currently is used as a clickbot, generating ad revenue for the botmaster through constant ad-specific activity.

No. 6: Monkif

Compromised U.S. computers: 520,000

Main crime use: This crimeware's current focus is downloading an adware BHO (browser helper object) onto a compromised system.

No. 7: Hamweq

Compromised U.S. computers: 480,000

Main crime use: Also known as IRCBrute, or an autorun worm, this backdoor worm makes copies of itself on the system and any removable drive it finds -- and anytime the removable drives are accessed, it executes automatically. An effective spreading mechanism, Hamweq creates registry entries to enable its automatic execution at every startup and injects itself into Explorer.exe. The botmaster using it can execute commands on and receive information from the compromised system.

No. 8: Swizzor

Compromised U.S. computers: 370,000

Main crime use: A variant of the Lop malware, this Trojan dropper can download and launch files from the Internet on the victim's machine without the user's knowledge, installing an adware program and other Trojans.

No. 9: Gammima

Compromised U.S. computers: 230,000

Main crime use: Also know as Gamina, Gamania, Frethog, Vaklik and Krap, this crimeware focuses on stealing online game logins, passwords and account information. It uses rootkit techniques to load into the address space of other common processes, such as Explorer.exe, and will spread through removable media such as USB keys. It's also known to be the worm that got into the International Space Station in the summer of 2008.

No. 10: Conficker

Compromised U.S. computers: 210,000

Main crime use: Also called Downadup, this downloader worm has spread significantly throughout the world, though not so much in the U.S. It's a complex downloader used to propagate other malware. Though it has been used to sell fake antivirus software, this crimeware currently seems to have no real purpose other than to spread. Industry watchers fear a more dangerous purpose will emerge.

{NETWORKWORLD}
Creativity is a mental and social process involving the generation of new ideas or concepts, or new associations of the creative mind between existing ideas or concepts.

Samker's Computer Forum - SCforum.info

America's 10 most wanted botnets
« on: 25. July 2009., 13:10:29 »




Samker

  • SCF Administrator
  • *****
  • Posts: 7206
  • KARMA: 291
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
Re: America's 10 most wanted botnets
« Reply #1 on: 25. July 2009., 21:21:44 »
I was expect that Conficker have "better" result.

Darksat

  • SCF VIP Member
  • *****
  • Posts: 20
  • KARMA: 2
    • Darksat Security Forums
Re: America's 10 most wanted botnets
« Reply #2 on: 27. July 2009., 12:15:09 »
Yeah only 210,000 computers, you should write to them and complain.
Seriously though, zeus with 3.6 million, thats greater than the population of my home country.
And in total thats about 13 million computers.
I wonder how many computers are infected with botnets in total out there?

Samker

  • SCF Administrator
  • *****
  • Posts: 7206
  • KARMA: 291
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
Re: America's 10 most wanted botnets
« Reply #3 on: 27. July 2009., 18:32:03 »
Yeah only 210,000 computers, you should write to them and complain.

 :up:

I wonder how many computers are infected with botnets in total out there?

In my opinion We still "have" some undiscovered botnets and this number is larger than 100 Mil.


s4ck

  • SCF Newbie
  • *
  • Posts: 9
  • KARMA: 2
Re: America's 10 most wanted botnets
« Reply #4 on: 07. August 2009., 16:31:09 »
How to avoid being part of a botnet

At present, the botnet networks [1] are one of the most commonly used by attackers to perpetrate malicious actions. An infected system can be operated by the creators of the botnet without the user noticing. However, proper use of a firewall installed on the system can help the user to detect the use of equipment by these criminal networks.
http://www.psicofxp.com/forums/seguridad-informatica.47/911765-como-evitar-ser-parte-de-botnet.html

s4ck

  • SCF Newbie
  • *
  • Posts: 9
  • KARMA: 2

Samker

  • SCF Administrator
  • *****
  • Posts: 7206
  • KARMA: 291
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum

zahdab

  • SCF Member
  • **
  • Posts: 26
  • KARMA: 1
Re: America's 10 most wanted botnets
« Reply #7 on: 30. September 2009., 17:47:10 »
thx for the link :)

kingprawn

  • SCF Member
  • **
  • Posts: 28
  • KARMA: 3
Re: America's 10 most wanted botnets
« Reply #8 on: 30. September 2009., 17:50:05 »
wow thats alarming

 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.scforum.info:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising