Microsoft secretly beheads notorious botnet
By Stuart Turton
Posted on 25 Feb 2010 at 09:06
Microsoft has won court approval to deactivate 277 domain names that are being used to control a vast network of infected PCs.
The software giant claims the notorious Waledac botnet is being used by Eastern European spammers to send 1.5 billion spam messages every day, and infect hundreds of thousands of machines with malware.
In a suit filed in the US District Court of Eastern Virginia, Microsoft accused 27 unnamed defendants of violating federal computer crime laws.
It further requested that domain registrar Verisign temporarily deactivate the domains, shutting down the control servers being used to send commands to the machines.
The operation hasn’t cleaned the infected computers and is not a silver bullet for undoing all the damage we believe Waledac has caused
The request was secretly approved by District Judge Leonie Brinkema, allowing the action to be taken covertly, preventing Waledac's operators from switching domains.
However, while Microsoft hailed the victory, it claimed the work was far from over. "Operation b49 [Microsoft's codename for the operation] has effectively shut down connections to the vast majority of Waledac-infected computers, and our goal is to make that disruption permanent," the company wrote on its blog.
"But the operation hasn’t cleaned the infected computers and is not a silver bullet for undoing all the damage we believe Waledac has caused. Although the zombies are now largely out of the bot-herders’ control, they are still infected with the original malware," it concluded.
From around the web
That's *Windows* botnet
Another story about a Windows botnet that somehow manages to avoid the word "Windows" completely.
It's little more than a Microsoft press release.
By BrownieBoy6 on 25 Feb 2010 
Of course it is
@BrownieBoy6: Of course it's a Windows BotNet - what would be the point in creating a BotNet for an OS *other* than the planet's most dominant?
Windows ain't perfect, but it's fallacious to assume that other OS's are immune. They're not immune, they're just unpopular.
By wanstronian on 26 Feb 2010
advertisement
- How to install Internet Explorer 9
- Maintaining and supporting IE9
- Plan your deployment
- Creating a custom browser package
- Search in corporate environments
- Chrome's shine getting lost in translation
- BytePac: the cardboard hard disk enclosure
- How tech loosens our grip on reality
- Hokum watch: Safer Internet Day
- Why I'm deleting Adobe from my PC
- Prepare to be patronised: it's Safer Internet Day
- Dear Sony, Samsung and every other tech company in the world: stop trying to be Apple
- Will Apple's Final Cut Pro X update placate the pros?
- Smartr Contacts for iPhone review
- Switching to Office 365's Outlook Web App
- Paying for your crimes with Bitcoin
- Pavement hacking: What it is and how to avoid it
- Google's risky pre-loaded pages
- Mac under attack: how secure is Apple's OS?
- Has your browser been hijacked?
- Can you send a truly anonymous email?
- Is it safe to send bank details over email?
- Sainsbury's Bank bans password storage
- MobileMe triggers credit card blocks
- How to stay safe against session hijacking
advertisement
Printed from www.pcpro.co.uk