Storm Worm Reappears
It’s baaack: The bot code used in the infamous, massive Storm botnet that was taken down nearly two years ago is being used to build another spamming botnet. Researchers have reverse-engineered the tweaked version of the original Storm code, which so far has spread somewhere between 10,000 to 20,000 machines. This is according to a post by DarkReading.
The article continues to state that researchers don’t know for sure whether it’s the same botnet gang that drove the original Storm and then its predecessor, Waledac — both of which are no more — but they have identified two-thirds of the same elements in this latest version as in the original Storm code version. Noticeably missing is Storm’s trademark peer-to-peer component: This version is all HTTP-based rather than the hybrid P2P/HTTP approach in the old botnet, which at one point swelled to a half-million bots. Storm began to fade away in the fall of 2008 after researchers were able to successfully disrupt its operations on more than one occasion.
Read the full article at DarkReading: Storm Worm Reappears
Leave a comment
New research reveals issues with these commonly overlooked devices… An article review Read more
Known to be vulnerable since 2005, the algorithm will be phased out over the next sev Read more
Hackers are getting unusually creative in their attacks… An article review. One drawb Read more
Another awareness poster for YOUR customers (and users). Now that we have our own em Read more