03.05.10

Gemini version available ♊︎

FBI Eliminates ~12,000,000 Windows Zombies Botnet, But Hundreds of Millions Remain

Posted in Microsoft, Security, Windows at 7:55 am by Dr. Roy Schestowitz

Summary: The latest Windows botnet crackdown is just a drop in the bucket and Microsoft Windows is once again just a keypress away from full compromise

A FEW days ago we wrote about just one large Windows botnet being addressed. It appears as though the FBI was involved. The FBI too has suffered from Windows malware, even internally [1, 2].

More details have emerged about a cybercrime investigation that led to the takedown of a botnet containing 12m zombie PCs and the arrest of three alleged kingpins who built and ran it.

That’s just peanuts. 12 million Windows zombie PCs are less than 3% of the world’s estimated total. To botmasters, there are still hundreds of millions of Windows zombie PCs to pick from.

“Users of Windows currently have to worry about hitting a particular physical key.”“Monster botnet held 800,000 people’s details,” says this other new report, so these Windows zombies have already caused theft and huge damages that are hard to measure (according to some estimates, the cost may easily exceed a trillion dollars in total, for Windows botnets as a whole). It is estimated that about one in two Windows PCs is is a zombie PC [1, 2], with Microsoft itself putting the optimistic bar at about a third (2009 figures).

Two days ago we wrote about the F1 flaw, which is now confirmed by Microsoft. It shows that nothing is improving. Users of Windows currently have to worry about hitting a particular physical key.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

4 Comments

  1. Needs Sunlight said,

    March 5, 2010 at 12:38 pm

    Gravatar

    It’s only a cyberwar if both sides can fight…

    Just wait till this gets combined with the banks being able to deny accountability for their own intentionally insecure ‘banking’ systems.

    Needs Sunlight Reply:
    March 5th, 2010 at 3:17 pm

    How much money did Den Danske Banken and partners lose in their MS SharePoint jihad?

    Roy Schestowitz Reply:
    March 5th, 2010 at 5:15 pm

    They had a “computer problem”.

  2. Robotron 2084 said,

    March 6, 2010 at 1:15 am

    Gravatar

    It’s worth repeating that Roy himself is the one claiming 1 in 2 machines is part of a botnet via two of his own articles. Not the larger audience of security companies, IT professionals, or even regular users. You’ll be hard press to find anyone using a ratio that severe.

DecorWhat Else is New

  1. The Photo Ops Festival of the Funky President António Campinos and Revolt From the Patent Examiners Whom He Perpetually Oppresses

    European Patents are being granted for no reason other than application and renewal fees, awarding European monopolies to companies that aren't even European (only about a third are actually European); staff of the EPO is fed up as it regards or views all this as an extreme departure from the EPO's mission (and it's also outright illegal)

  2. Links 21/03/2023: Trisquel GNU/Linux 11.0 LTS

    Links for the day

  3. Back Doors Proponent Microsoft Infiltrates Panels That Write the Security Regulations, Press Fails to Point Out the Obvious

    Cult tactics and classic entryism serve Microsoft again, stacking the panels and basically writing policy (CISA). As an associate explained it, citing this new example, Stanford “neglects to point out the obvious fact that Microsoft is writing its own regulations.”

  4. IRC Proceedings: Monday, March 20, 2023

    IRC logs for Monday, March 20, 2023

  5. Links 20/03/2023: Curl 8.0.0/1 and CloudStack 4.18.0.0 LTS

    Links for the day

  6. Standard Life (Phoenix Group Holdings): Three Weeks to Merely Start Investigating Pension Fraud (and Only After Repeated Reminders From the Fraud's Victims)

    As the phonecall above hopefully shows (or further elucidates), Standard Life leaves customers in a Kafkaesque situation, bouncing them from one person to another person without actually progressing on a fraud investigation

  7. Standard Life Paper Mills in Edinburgh

    Standard Life is issuing official-looking financial papers for companies that then use that paperwork to embezzle staff

  8. Pension Fraud Investigation Not a High Priority in Standard Life (Phoenix Group Holdings)

    The 'Open Source' company where I worked for nearly 12 years embezzled its staff; despite knowing that employees were subjected to fraud in Standard Life's name, it doesn't seem like Standard Life has bothered to investigate (it has been a fortnight already; no progress is reported by management at Standard Life)

  9. Links 20/03/2023: Tails 5.11 and EasyOS 5.1.1

    Links for the day

  10. Links 20/03/2023: Amazon Linux 2023 and Linux Kernel 6.3 RC3

    Links for the day

  11. IRC Proceedings: Sunday, March 19, 2023

    IRC logs for Sunday, March 19, 2023

  12. An Update on Sirius 'Open Source' Pensiongate: It's Looking Worse Than Ever

    It's starting to look more and more like pension providers in the UK, including some very major and large ones, are aiding criminals who steal money from their workers under the guise of "pensions"

  13. Services and Users TRApped in Telescreen-Running Apps

    TRApp, term that lends its name to this article, is short for "Telescreen-Running App". It sounds just like "trap". Any similarity is not purely coincidental.

  14. Links 19/03/2023: Release of Libreboot 20230319 and NATO Expanding

    Links for the day

  15. Great Things Brewing

    We've been very busy behind the scenes this past week; we expect some good publications ahead

  16. Links 19/03/2023: LLVM 16.0.0 and EasyOS Kirkstone 5.1 Releases

    Links for the day

  17. IRC Proceedings: Saturday, March 18, 2023

    IRC logs for Saturday, March 18, 2023

  18. Links 18/03/2023: Many HowTos, Several New Releases

    Links for the day

  19. Links 18/03/2023: Tor Browser 12.0.4 and Politics

    Links for the day

  20. Links 18/03/2023: Docker is Deleting Free Software Organisations

    Links for the day

  21. IRC Proceedings: Friday, March 17, 2023

    IRC logs for Friday, March 17, 2023

  22. New Talk: Richard Stallman Explains His Problem With Rust (Trademark Restrictions), Openwashing (Including Linux Kernel), Machine Learning, and the JavaScript Trap

    Richard Stallman's talk is now available above (skip to 18:20 to get to the talk; the volume was improved over time, corrected at the sender's end)

  23. Links 17/03/2023: CentOS Newsletter and News About 'Mr. UNIX' Ken Thompson Hopping on GNU/Linux

    Links for the day

  24. The European Patent Office's Central Staff Committee Explains the Situation at the EPO to the 'Yes Men' of António Campinos (Who is Stacking All the Panels)

    The EPO’s management is lying to staff (even right to their faces!) and it is actively obstructing attempts to step back into compliance with the law; elected staff representatives have produced detailed documents that explain the nature of some of the problems they’re facing

  25. Links 17/03/2023: Linux 6.2.7 and LibreSSL 3.7.1 Released

    Links for the day

  26. GNU/Linux in Honduras: 10% Market Share? (Updated)

    As per the latest statistics

  27. Links 17/03/2023: Update on John Deere’s Ongoing GPL Violations and PyTorch 2.0

    Links for the day

  28. IRC Proceedings: Thursday, March 16, 2023

    IRC logs for Thursday, March 16, 2023

  29. RMS: A Tour of Malicious Software, With a Typical Cell Phone as Example

    Tonight in Europe or this afternoon in America Richard M. Stallman (RMS), who turned 70 yesterday, gives a talk

  30. Skyfall for Sirius 'Open Source': A Second Pension Provider Starts to Investigate Serious (Sirius) Abuses

    Further to yesterday's update on Sirius ‘Open Source’ and its “Pensiongate” we can gladly report some progress following escalation to management; this is about tech and “Open Source” employees facing abuse at work, even subjected to crimes

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts