HOME     MENU     SEARCH     NEWSLETTER    
THE ENTERPRISE SECURITY SUPERSITE. UPDATED 5 MINUTES AGO.
You are here: Home / Security Solutions / Botnet Lair in Ukraine Is a Warning
Druva Endpoint Backup:
Enterprises Realize Simple Secure Backup with Druva
www.druva.com
Botnet Lair in Ukraine Demonstrates Dangers of Infection
Botnet Lair in Ukraine Demonstrates Dangers of Infection
By Barry Levine / Enterprise Security Today Like this on Facebook Tweet this Link thison Linkedin Link this on Google Plus
PUBLISHED:
DECEMBER
06
2011


A recently discovered server in Ukraine demonstrates the danger -- and volume -- of industrial-level identity theft. The server, located by the United Kingdom-based security firm Prevx, was a storage site for data stolen from 160,000 computers that had been infected by viruses.

The server remained online for a month after the Internet service provider, and legal authorities, were alerted to its presence. During that time, it continued to steal data from about 5,000 computers daily, which were harvested through the use of viruses that collect and transmit data. A network of such infected computers is known as a botnet.

'Keys to the Castle'

The stolen data found in the server included e-mails, Facebook passwords, Social Security numbers and log-on info for banks. Prevx was able to find and probe the server because of its poor security protection.

Some of the data came from the infected computer of a U.S. community bank, Metro City Bank in Doraville, Ga., which apparently was not well protected. Such lax protection, said Prevx's director of malware research Jacques Erasmus, is like "giving criminals the keys to the castle." Metro City Bank has said that it is notifying customers and looking into the security breach.

Erasmus told news media that getting into a system may not initially result in "the biggest data heist ever," but this is how hackers get into a network, where they can increase their haul. An entry point through a lightly protected computer serves as a beachhead to launch a full-blown invasion.

In addition to relaying data, the botnets can also capture a stream of user activity. For instance, according to the Associated Press, the server in Ukraine had continuing information on a 22-year-old in Southern California, including registration of a domain name with GoDaddy.com, changing of a Yahoo e-mail password, and ordering from Pizza Hut -- along with data used for those transactions, such as his credit card number, birthdate, phone number and other confidential information.

Checking Net Usage

Prevx, which makes anti-botnet protective software, said thousands of PCs are infected every day and become part of botnets -- including computers protected by respected anti-virus and other security suites.

The security firm said that signs of infection include slow performance when doing some minor task, such as checking e-mail or surfing the Web. On a PC, the company recommends, open Task Manager by simultaneously pressing CTRL, ALT, and Delete keys, and then select Network. If the Internet network connection is more than a few percent usage, this could be a sign that extra transmission is going on.

Prevx suggests that the user then obtain a security product from a maker other than your current security suite, since it is obviously not doing a complete job. In addition to its own Prevx Edge, the company suggests products from AVG, Kaspersky, Panda or Sophos. In some cases, professional services may be required to remove the infection.

Security firm Symantec recommends that security software be configured to update automatically, since viruses change frequently. For Windows users, the company suggests that the most recent operating system update be installed, and that browser security settings by increased.

Tell Us What You Think
Comment:

Name:

Like Us on FacebookFollow Us on Twitter
TOP STORIES NOW
MAY INTEREST YOU
BMC's shared success is built on 6 fundamental principles: 1) An Intuitive User Experience 2) Agile Application 3) Actionable Intelligence 4) Adaptive Automation 5) Compliance & Risk Mitigation 6) Optimized Infrastructure & Cost. Contact BMC to learn more.
MORE IN SECURITY SOLUTIONS
Product Information and Resources for Technology You Can Use To Boost Your Business

NETWORK SECURITY SPOTLIGHT
Sony is no stranger to breaches. Sony’s PlayStation Network was hacked in 2011 and attackers obtained 77 million user accounts. The latest attack comes against Sony Pictures Entertainment.

ENTERPRISE HARDWARE SPOTLIGHT
Doctor Who had K-9, the robot dog that accompanied him on adventures through space. Now, Mountain View has K5, a 5-foot-tall, 300-pound robot security guard patrolling in the Bay Area.

MOBILE TECHNOLOGY SPOTLIGHT
Beleaguered handset maker BlackBerry is targeting iPhone users with an offer the company hopes they can’t refuse -- $550 to leave Apple and switch to the new BlackBerry Passport.

© Copyright 2014 NewsFactor Network, Inc. All rights reserved. Member of Accuserve Ad Network.