Facebook Plunges Again
Tumblr 101: Tips And Tricks To Get Started
Dutch police manipulate botnet to warn infected users
In the case of the recent Bredolab botnet, it was the Dutch police who stepped up. Following a concerted effort involving members of several security firms and the Dutch National Crime Squad, more than 140 Bredolab servers were seized. Here's where this story really gets good.
After they successfully gained control of the servers, the Dutch Police put the botnet to creative use -- pushing notifications to infected users and providing links to a removal tool. Sophos Labs' Graham Cluely mentions that as many as 30 million PCs may have been infected by Bredo, so what better way to notify users than via the botnet's own plumbing?
Comments
4
Subscribe to commentsBugMeNotOct 26th 2010 11:58AM
"Better" would be telling the botnet to automatically grab the removal tool and run it. But of course they won't do that for various legal reasons.
Botnets will continue to be a huge problem as long as these groups aren't willing to do what it takes to take care of it.
dm3ntdOct 26th 2010 12:12PM
This is the first time (to my knowledge) that a seized botnet was used for a positive outcome... good for them!
JoshOct 26th 2010 12:13PM
I have to give it to these guys... that was a pretty cool and ingenious move on their part. Only problem is that many users will just close the window thinking it is an ad.
SteveOct 26th 2010 4:12PM
Police can't really remove software (even malware) from someone's PC without their knowledge. That would open them up to loads of potential lawsuits (probably 100% frivolous, but they would still take time and money).