Bonum Certa Men Certa

Internet Mayhem With Microsoft Windows Botnets

Fire



Summary: News reports about security, mostly from IDG and almost exclusively about Microsoft and Windows

ZeuS Botnet Still Mutating, Still on the Move

New capabilities are strengthening the ZeuS botnet, which criminals use to steal financial credentials and execute unauthorized transactions in online banking, automated clearing house (ACH) networks and payroll systems. The latest version of this cybercrime toolkit, which starts at about $3,000, offers a $10,000 module that can let attackers completely take control of a compromised PC.


ZeuS botnet code keeps getting better for criminals

New capabilities are strengthening the ZeuS botnet, which criminals use to steal financial credentials and execute unauthorized transactions in online banking, automated clearing house (ACH) networks and payroll systems. The latest version of this cybercrime toolkit, which starts at about $3,000, offers a $10,000 module that can let attackers completely take control of a compromised PC.

[...]

The Windows-based ZeuS Trojan software, which takes up about 50,000 bytes on a compromised Windows-based computer, is designed to plunder accounts in North American and United Kingdom banking systems via the victim's computer. The criminal might be located a continent away, directing unauthorized transfers of funds to accounts through elaborate command-and-control systems.


One-third of orphaned Zeus botnets find way home

The takedown of 100 servers used to control Zeus-related botnets may be a short-lived victory, security researchers said after discovering that about a third of the orphaned channels were able to regain connectivity in less than 48 hours.

The resurrection of at least 30 command and control channels came after their internet service provider found a new upstream provider to provide connectivity to the outside world, autonomous system records showed on Thursday. As a result, some of the rogue customers who used the Troyak ISP to herd huge numbers of infected PCs were able to once again connect to the compromised machines and issue commands.


Zeus Botnet Dealt a Blow as ISP Troyak Knocked out

After Takedown, Botnet-linked ISP Troyak Resurfaces (Windows not mentioned)

Zeus is a botnet kit used by a large number of cybercriminals. Researchers have counted 249 Zeus command-and-control servers to date. Another Internet service provider named Group 3 was also knocked offline Wednesday. It has not been reconnected, however.


Estonian DDoS revenge worm crafter jailed

An Estonian virus writer has been jailed for two and a half years for creating a Windows worm family that launched denial of service attacks on the websites of a local insurance firm and ISP.

Artur Boiko, 44, was convicted by a jury of creating the Allaple worm and sentenced to two years and seven months following a trial. Boiko pleaded not guilty but prosecutors persuaded the jury that he became a malware author in late 2006 to seek revenge against insurance firm IF following a dispute over a rejected car accident insurance claim.


FBI Embeds Cyber-investigators in Ukraine, Estonia

Hoping to catch cybercrooks, the U.S. Federal Bureau of Investigation has begun embedding agents with law enforcement agencies in Estonia, the Ukraine and the Netherlands.


Homeland Security is recruiting new cyber-warriors (they aim for prevention after the act instead of eternal cure)

Department of Homeland Security Janet Napolitano said during a keynote speech today that her agency has new authority to beef up the department's team of cyber-warriors and couldn't help making her pitch before the thousands of security experts in the room.


Professor Gets Money For Cybersecurity Research

More problems surfacing:

New Internet Explorer Flaw Revealed

Microsoft Warns of New Bug Affecting IE Users

Microsoft warns of new IE bug; attacks under way

IE Zero-day Exploit Code Goes Public

Exploit code for the unpatched bug in Internet Explorer was published on the Web yesterday, a step security pros said earlier would be the precursor to widespread attacks.


McAfee inadvertently speeds creation of Metaploit IE exploit pack

Chinese Hack Attacks Said Likely to Recur (Internet Explorer was the cause [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12])

Recent Internet attacks from China against Google and other U.S. companies will more than double this year if the pace during the first two months continues, a security expert says.


US expert: Chinese gov't likely behind massive cyberattacks

The Chinese government is likely behind recent cyberattacks on U.S. government Web sites and on U.S. companies in an apparent effort to quash criticism of the government there, an expert on U.S. and Chinese relations said Wednesday.


FBI Director: Hackers Have Corrupted Valuable Data

Hackers breaking into businesses and government agencies with targeted attacks have not only stolen intellectual property, in some cases they have corrupted data too, the head of the U.S. Federal Bureau of Investigation said Thursday.


FBI: Cyberfraud Losses Doubled in 2009 (no wonder it costs so much to recover)

Last year was a tough one for most businesses, but for cybercriminals it was one of the best yet.

According to data released Friday by the U.S. Federal Bureau of Investigation's Internet Crime Complaint Center (IC3), victims reported total losses of US$559.7 million in 2009, more than double the tally for 2008.


Trojan armed with hardware-based anti-piracy control

The latest version of the Zeus do-it-yourself crimeware kit goes to great lengths to thwart would-be pirates by introducing a hardware-based product activation scheme similar to what's found in Microsoft Windows.

The newest version with bare-bones capabilities starts at $4,000 and additional features can fetch as much as $10,000. The new feature is designed to prevent what Microsoft refers to as "casual copying" by ensuring that only one computer can run a licensed version of the program. After it is installed, users must obtain a key that's good for just that one machine.


Zombies in another sense (traditional and not harmful):

Six Essential IPhone Apps for a Zombie Attack

ZombieSmash Coming to IPhone

Recent Techrights' Posts

Microsoft Blasted for Adding Insult to Injury: Workers Laid Off Without Prior Notice, Without Severance Payment and Basic Coverage (Like Health), Then Stigmatised as Bad Performers So They Cannot Find a Job Elsewhere
Such stereotypes end entire careers
BetaNews is Still Publishing LLM Slop/SPAM About "Linux"
Assuming it is indeed LLM slop, it seems clear BetaNews has no intention of improving or is simply unable/unwilling to improve
If Matthias Kirschner Loves Free Software, He'll Change the Name of the Microsoft-Sponsored Organisation He Governs (in Order to Avoid Confusion)
The FSF-EEE does not really like Software Freedom, it just loves money (including Microsoft's)
EPO's Local Occupational Health, Safety and Ergonomics Committee (LOHSEC) in The Hague: Workers Are Getting Sicker, Conditions in Which to Assess Patent Applications Deteriorate
"According to the Office statistics the total number of days of absence has gone up from 12.4 to 13.1 total number of sick days per Full Time Equivalent (FTE) from 2023 to 2024."
The Standard Needs to Improve Its Standards for Fact-Checking, Aaron Swartz Had Nothing to Do With Reddit and He Detested the Company That Created It
The Web is already bad enough as it is
New Paper From the EPO Highlights Large-Scale Discrimination at the Office, Where People Are Rewarded for Granting More and More Illegal Patents
Even the Kremlin is probably more competent than this
 
IBM Layoff Rumours, Large-Scale Implementations Weeks Ahead (in March 2025)
There are some people corroborating
Links 11/02/2025: Nutritional Poverty, Closure of USAID, More Fictional 'Valuations' Around Buzzwords
Links for the day
Perl Programming Leftovers
recently in perl.org
Microsoft in Africa: From 98% to Less Than 10% in Just 16 Years
Microsoft being on less than 1 in 10 Web-connected devices in Africa is a very big deal
Almost as If MElon Reads Techrights
The joke we started appears to be spreading
Gemini Links 11/02/2025: NeoVim and Deploying Other People's Code
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, February 10, 2025
IRC logs for Monday, February 10, 2025
Scheduled Maintenance Tomorrow and on Valentines
If the site (or Gemini capsule) is offline for a bit, the maintenance windows are likely the root cause
Soylent News Lessens the Scope of Discussion Due to Persistent Trolling and Online Abuse
if they make it a lot harder for new people to participate, then they limit the "general appeal" and reach
When the Livestream of Richard Stallman is Apparently Bury-Brigaded Offline You Finally Learn to Avoid Google/YouTube for Streaming
Please, people, stop uploading to Google/YouTube
Links 10/02/2025: Ban on D.E.I. Language, Listeria Risk/Outbreak
Links for the day
Links 10/02/2025: Announcing "Stringless" and Mental Health Improvement
Links for the day
Links 10/02/2025: Facebook Mass Layoffs, "Meta" Did What Aaron Swartz Had Done But to the Tune of 81.7 Terabytes
Links for the day
Microsoft Tarnishing the Brand of Arch
Of course Arch can do whatever it wants, but being associated with Microsoft is a badge of shame
The Ultimate and Inevitable Fall of OpenAI (Even Brave is 'Bigger' Now)
"When you advertise at the Super Bowl, you’ve reached just about every consumer in America. It’s the last stop. If you’re not profitable yet, you never will be."
Adding Slop to Your Blog Only Makes One Assume All the Text is LLM Slop
Simon Coter from Oracle has turned to slop
Macao is Leaving Microsoft Behind
Windows is falling to new all-time lows
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, February 09, 2025
IRC logs for Sunday, February 09, 2025
Microsoft's WSL (LSW) Shows That It Can Never Love Linux, Only Windows
that's just how Microsoft rolls
Activism in Times of War and a Coup
'Linux' Foundation works for fascism
What the Silencing of Neatnik Tells Us About Linus Torvalds Inside a Microsoft-Dominated 'Linux' Foundation
Is Linus Torvalds free to express his mind as he wishes about every topic, even just any technical topic?
Windows Down to 11.35% in Senegal, as Measured by statCounter
Another all-time low (Windows was at 99% in 2009)
"Latest Technology News" in BetaNews is LLM Slop Promoting OOXML and Proprietary Software at the Expense of LibreOffice and OpenDocument Format (ODF)
Remember that "open-source" and Open Source aren't the same; the former is fake
Links 09/02/2025: Coffee, Toxic Productivity, and Programming
Links for the day
Debian's Human Rights violations & Swiss women Nazi symbolism
Reprinted with permission from Daniel Pocock
Links 09/02/2025: Software Patents on MP3 and Another Scam Dressed Up as "Crypto"
Links for the day
Links 09/02/2025: Russian Energy Cut Off, LLM Pushers Show Signs of Desperation
Links for the day
Richard Stallman (RMS) Does Not Have Media Companies and Lobbyists on His Side, But His Message Spreads Regardless
The message of RMS is spreading in spite of all the smears
GNU/Linux Rises to All-Time High in Chile
sharp rise for GNU/Linux in Chile
Links 09/02/2025: Hottest January on Record, Panama Blackmailed
Links for the day
Why We Still Love Gemini Protocol
Gemini Protocol may seem like something "old" (it's actually very new) and something "nobody would use", but many people use it
Gemini Links 09/02/2025: "Died as a Mineral" and Game Interface for a Non-Game
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, February 08, 2025
IRC logs for Saturday, February 08, 2025