Study: Microsoft Windows Botnets Costing Millions Per Enterprise

Dr. Roy Schestowitz

2010-02-23 08:59:38 UTC
Modified: 2010-02-23 08:59:38 UTC

Summary: New estimates of the cost of turbulence and intrusion as applied to large businesses

Windows zombies are probably costing trillions of dollars to the economy. It depends on how one measures it, but a lot of what we do online and offline depends on the assumption that half of all Windows PCs are under control by someone other than the persons sitting before them. These are fairly conservative estimates that are being repeated by several separate sources and Microsoft can corroborate as a few months ago it said that one third of the machines it had scanned were in fact infected.

Cost of cyberattacks alone -- attacks that are carried out from Windows zombies for the vast part -- are estimated to have affected three quarters of enterprises and cost just over 2 million dollars on average (for each enterprise). Security vendors insist that most businesses keep breaches and attacks secret for all sorts of reasons, so the problem is underreported.

"OK, even allowing for the fact this comes from a newly published study (PDF) from a security company, that's still one heck of a statistic. The fact that it's Symantec, and so has access to perhaps more enterprises than most, makes it a double-heck with knobs on. Or how about this one for size: 'every enterprise, yes, 100 percent, experienced cyber losses in 2009.'"

eWEEK also has this new article about the Zeus botnet:

Zeus is among the most popular crimeware tool kits out there and was placed in the spotlight last week due to NetWitness' discovery of the Kneber botnet. In a discussion with eWEEK, security pros walk through some of the ways Zeus infiltrates organizations and discuss the importance of defense-in-depth as well as having sound policies governing the remediation and investigation process if infected by malware.

The article totally 'forgets' to mention Windows, but then again, it's an article from Microsoft's partner, Ziff Davis [1, 2, 3]. They would rather pretend it's just a "computer issue" or "malware", as usual. ⬆

"Our products just aren't engineered for security."

--Brian Valentine, Microsoft executive at the time, now working for Amazon as Senior Vice President

Recent Techrights' Posts

Slopwatch: Another Day, Another Slopfest, LLM Slop Scrapers Slow Down Our Site: We too have some slop issues; this past day this site and the sister site had to answer about 2.5 million requests (not counting Gemini Protocol) and it's slowing things down for everybody
Abuse Inside the Polish Patent Office (UPRP) - Part IX: Minimum Wages For You (Experienced Scientist), Alicante/EU Paydays For Me (Unproductive, Corrupt Official): Does UPRP maladministration extend to the false belief that qualified and experienced scientists can play the role of circus clowns?
IBM's CEO Roasted, Sizzled and Grilled for Dumb and Inconsistent Vapourware Promises: It looks like being a chronic liar is what it takes to lead the company once synonymous with computing
Why the Militants Have Lost Every Battle Since 2022 (When Attacking My Wife and I in Various Ways, Even Attacking Our Employers): This takes patience, sure, but at the end most evildoers face the consequences for their actions
Our Priority is Still Tackling Software Patents and Corruption in Patent Offices: Meanwhile we got compliments on our recent articles, which means that they are effective
Politics Will Impact Software Choices: Will those systems respect users' freedom?
EPO: Neglecting Children to Promote American Monopolies by Shielding Them From European Competition: Yesterday the Central Staff Committee at the EPO spoke about another "reform" at the Office
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Wednesday, June 11, 2025: IRC logs for Wednesday, June 11, 2025
Links 11/06/2025: More Vulnerabilities Found in 'Smart' Phones, China Extends Reach in the Pacific: Links for the day
Gemini Links 11/06/2025: Grain and Steam Next Fest: Links for the day
Links 11/06/2025: "Quantum" Hype From IBM, US Closer to Martial Law, and “The Nation” Celebrates Milestone: Links for the day
IBM's Goal Is Not (and Never Was) Computer Users' Freedom: More than 1.5 decades ago I found IBM to be an "ally of convenience" because of OpenDocument Format (ODF)
Wayland Shows the IBM/Red Hat Way of Doing Things: IBM is trying to 'kill' X
Who Imitates Who? Plagiarist as Client (From Microsoft), 'Plagiarism' at the Law Firm?: let's revisit the subject
GitHub is Proprietary, Controlled by Microsoft, and GPL Violation Warehouse: "IRS tax filing software [will be] released to the people as free software" ... In general this is good news
Slopfarm Catastrophe: Seems like BetaNews (or BetaNoise) has just suffered a major data loss and restored the site from a week-old backup
Abuse Inside the Polish Patent Office (UPRP) - Part VIII: Illegal Working Conditions: How many people need to die for these people to get their massive salaries?
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Tuesday, June 10, 2025: IRC logs for Tuesday, June 10, 2025
Links 10/06/2025: Apple Hype and Physical Attacks on Bloggers: Links for the day
Gemini Links 10/06/2025: Loon Lake, Farming, and Forth: Links for the day
Links 10/06/2025: Jaws at 50 and US Democracy Crushed Very Rapidly (Martial Law Seems Imminent): Links for the day
Abuse Inside the Polish Patent Office (UPRP) - Part VII: Washing Their Hands After Corruption and Abuse: "Tragedy or comedy?"
Culling Bad RSS Feeds of Bad Sites: Not throwing out the baby with the bathwater
If 'Microsoft v Techrights' is Dealt With by a 'Microsoft Court' (or a Court Outsourced to Microsoft): More on that later
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Monday, June 09, 2025: IRC logs for Monday, June 09, 2025
Gemini Protocol Turns Six in 10 Days From Now: If you haven't tried it yet, then give it a go today
Live as You Preach: technology is fast becoming dysphoric