Storm Worm Reappears
It’s baaack: The bot code used in the infamous, massive Storm botnet that was taken down nearly two years ago is being used to build another spamming botnet. Researchers have reverse-engineered the tweaked version of the original Storm code, which so far has spread somewhere between 10,000 to 20,000 machines. This is according to a post by DarkReading.
The article continues to state that researchers don’t know for sure whether it’s the same botnet gang that drove the original Storm and then its predecessor, Waledac — both of which are no more — but they have identified two-thirds of the same elements in this latest version as in the original Storm code version. Noticeably missing is Storm’s trademark peer-to-peer component: This version is all HTTP-based rather than the hybrid P2P/HTTP approach in the old botnet, which at one point swelled to a half-million bots. Storm began to fade away in the fall of 2008 after researchers were able to successfully disrupt its operations on more than one occasion.
Read the full article at DarkReading: Storm Worm Reappears
Leave a comment
Many organizations spend time and money deploying endpoint protection, then think the Read more
Some small organizations continue to use customer data to generate initial passwords, Read more
Another awareness poster for YOUR customers (and users). Now that we have our own em Read more
Risk isn’t the only thing to consider when planning a decision tree. Another one of t Read more