A rise in 'botnets' on compromised PCs


A rise in 'botnets' on compromised PCs

Antony Savvas

The problem of "botnets" on compromised "zombie" computers is increasing, said security group The Honeynet Project.

Botnets are connected PCs that have been remotely taken over by hackers without their owners knowing.

Just 100 active botnets tracked by Honeynet launched 226 distributed denial of service (DDoS) attacks in a three-month period from November 2004 to January 2005.

One of the botnets contained 50,000 compromised zombie machines. In the three-month tracking period, Honeynet detected 226,585 unique IP addresses joining at least one of the channels being monitored.

Since the project sees only a portion of active botnets, Honeynet said that even by conservative estimates "this would mean that more then one million hosts are compromised and can be controlled by malicious attackers".

Botnets are being used for a variety of scams, including spamming, phishing, sniffing network traffic for unencrypted passwords, and remote user keylogging.

"Our research shows that some attackers are highly skilled and organised, potentially belonging to well organised crime structures," Honeynet said.

Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy