Stealthy router-based botnet worm squirming

Tuesday, March 24th, 2009

Researchers at DroneBL have spotted signs of a stealthy router-based botnet worm targeting routers and DSL modems. The worm, called “psyb0t,” has been circulating since at least January this year, infecting vulnerable embedded Linux devices such as the Netcomm NB5 ADSL modem (above) and launching denial-of-service attacks on some Web sites. Some ...

Conficker becomes a more flexible worm

Monday, February 23rd, 2009

It seems that the authors of the Conficker worm for Windows are continually updating their malware. In their current analyses, researchers at SRI International have found that the current Conficker variants B and B++ are decidedly more flexible than their predecessors in downloading further components and new versions. The first version ...

New DDoS attack based on deluge of dots

Sunday, February 15th, 2009

A technique for worsening the effects of a distributed denial-of-service-type attacks uses a feature in the DNS system that was once designed to be helpful. Patching it could involve reconfiguring millions of domain-name servers, or even rethinking how the system works. A DDoS attack, of course, involves bombarding a target site ...

OpenDNS to block Conficker

Sunday, February 8th, 2009

On Monday, OpenDNS, the free DNS service, plans to start blocking the Conficker worm's attempts to connect to potential control servers. According to The Register, the new free service will also be able to alert administrators to the presence of the Conficker worm and assist them in locating infected machines. Conficker ...

Storm Worm botnet cracked wide open

Friday, January 9th, 2009

A team of researchers from Bonn University and RWTH Aachen University have analysed the notorious Storm Worm botnet, and concluded it certainly isn't as invulnerable as it once seemed. Quite the reverse, for in theory it can be rapidly eliminated using software developed and at least partially disclosed by Georg ...