Study: Microsoft Windows Botnets Costing Millions Per Enterprise

Dr. Roy Schestowitz

2010-02-23 08:59:38 UTC
Modified: 2010-02-23 08:59:38 UTC

Summary: New estimates of the cost of turbulence and intrusion as applied to large businesses

Windows zombies are probably costing trillions of dollars to the economy. It depends on how one measures it, but a lot of what we do online and offline depends on the assumption that half of all Windows PCs are under control by someone other than the persons sitting before them. These are fairly conservative estimates that are being repeated by several separate sources and Microsoft can corroborate as a few months ago it said that one third of the machines it had scanned were in fact infected.

Cost of cyberattacks alone -- attacks that are carried out from Windows zombies for the vast part -- are estimated to have affected three quarters of enterprises and cost just over 2 million dollars on average (for each enterprise). Security vendors insist that most businesses keep breaches and attacks secret for all sorts of reasons, so the problem is underreported.

"OK, even allowing for the fact this comes from a newly published study (PDF) from a security company, that's still one heck of a statistic. The fact that it's Symantec, and so has access to perhaps more enterprises than most, makes it a double-heck with knobs on. Or how about this one for size: 'every enterprise, yes, 100 percent, experienced cyber losses in 2009.'"

eWEEK also has this new article about the Zeus botnet:

Zeus is among the most popular crimeware tool kits out there and was placed in the spotlight last week due to NetWitness' discovery of the Kneber botnet. In a discussion with eWEEK, security pros walk through some of the ways Zeus infiltrates organizations and discuss the importance of defense-in-depth as well as having sound policies governing the remediation and investigation process if infected by malware.

The article totally 'forgets' to mention Windows, but then again, it's an article from Microsoft's partner, Ziff Davis [1, 2, 3]. They would rather pretend it's just a "computer issue" or "malware", as usual. ⬆

"Our products just aren't engineered for security."

--Brian Valentine, Microsoft executive at the time, now working for Amazon as Senior Vice President

Recent Techrights' Posts

Techrights' Statement on Code of Censorship (CoC) and Kent Overstreet: This Was the Real Purpose of Censorship Agreements All Along: Bombing people is OK (if you sponsor the key organisations), opposing bombings is not (a CoC in a nutshell)
[Meme] The Most Liberal Company: "Insurrection? What insurrection?"
apple.com Traffic Down Over 7%, Says One Spyware Firm; Apple's Liabilities Increased Over 6% to $308,030,000,000: Apple is also about 120 billion dollars in debt
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, November 23, 2024: IRC logs for Saturday, November 23, 2024
[Meme] GAFAMfox: Mozilla Firefox in a state of extreme distress
Google Can Kill Mozilla Any Time It Wants: That gives Google far too much power over its rival... There are already many sites that refuse to work with Firefox or explicitly say Firefox isn't supported
Free (as in Freedom) Software Helps Tackle the Software Liability Issue, It Lets Users Exercise Greater Control Over Programs: Microsofters have been trying to ban or exclude Free software
In the US, Patent Laws Are Up for Sale: This problem is a lot bigger than just patents
ESET Finds Rootkits, Does Not Explain How They Get Installed, Media Says It Means "Previously Unknown Linux Backdoors" (Useful Distraction From CALEA and CALEA2): FUD watch
Techdirt Loses Its Objectivity in Pursuit of Money: The more concerning aspects are coverage of GAFAM and Microsoft in particular
Links 23/11/2024: Press Sold to Vultures, New LLM Blunders: Links for the day
Links 23/11/2024: "Relationship with Oneself" and Yretek.com is Back: Links for the day
Links 23/11/2024: "Real World" Cracked and UK Online Safety Act is Law: Links for the day
Links 23/11/2024: Celebrating Proprietary Bluesky (False Choice, Same Issues) and Software Patents Squashed: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, November 22, 2024: IRC logs for Friday, November 22, 2024
Gemini Links 23/11/2024: 150 Day Streak in Duolingo and ICBMs: Links for the day
Links 22/11/2024: Dynamic Pricing Practice and Monopoly Abuses: Links for the day
Topics We Lacked Time to Cover: Due to a Microsoft event (an annual malware fest for lobbying and marketing purposes) there was also a lot of Microsoft propaganda
Microsofters Try to Defund the Free Software Foundation (by Attacking Its Founder This Week) and They Tell People to Instead Give Money to Microsoft Front Groups: Microsoft people try to outspend their critics and harass them
[Meme] EPO for the Kids' Future (or Lack of It): Patents can last two decades and grow with (or catch up with) the kids
EPO Education: Workers Resort to Legal Actions (Many Cases) Against the Administration: At the moment the casualties of EPO corruption include the EPO's own staff
Gemini Links 22/11/2024: ChromeOS, Search Engines, Regular Expressions: Links for the day
This Month is the 11th Month of This Year With Mass Layoffs at Microsoft (So Far It's Happening Every Month This Year, More Announced Hours Ago): Now they even admit it
Links 22/11/2024: Software Patents Squashed, Russia Starts Using ICBMs: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Thursday, November 21, 2024: IRC logs for Thursday, November 21, 2024