MayDay! Sneakier, More Powerful Botnet on the Loose
February 8th, 2008 Posted/Linked by Shanmuga ShareThis
"A new peer-to-peer (P2P) botnet even more powerful and stealthy than the infamous Storm has begun infiltrating mostly U.S.-based large enterprises, educational institutions, and customers of major ISPs. The MayDay botnet can evade leading antivirus products, and so far has compromised thousands of hosts, according to Damballa, which says 96.5 percent of the infected machines are in the U.S., and about 2.5 percent in Canada.
Damballa first hinted of this potential successor to Storm late last year. MayDay uses a combination of techniques to communicate with its bots, including hijacking browser proxy settings, says Tripp Cox, vice president of engineering for Damballa. He says, "It can communicate through an enterprise’s secure Web proxy and conduct updates and attack activities" — a unique method for a botnet." - Content courtesy of MayDay! Sneakier, More Powerful Botnet on the Loose - Desktop Security News Analysis - Dark Reading
If you enjoyed this post, make sure you subscribe to my RSS feed!
This entry was posted on Friday, February 8th, 2008 at 6:32 pm and is filed under Botnets, Malware. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
