Storm botnet still spamming through 2008
By Asavin Wattanajantra,
The Storm botnet is alive and well, thriving across millions of computers and continuing to cause problems with spam and malware.
According to a MessageLabs report, the Storm botnet was responsible for 20 per cent of all spam in the first quarter of 2008.
The security vendor also intercepted more than four million emails from the Storm botnet since January, which either contained links to malware or were aimed at launching phishing attacks.
"Storm's focus on spam seems to be just the tip of the iceberg as emails containing malware and phishing attacks from the Storm botnet are now growing in numbers," said Mark Sunner, MessageLabs' chief security analyst.
The report findings indicated that the Storm botnet was being broken up, which allowed controllers to take separate parts and choose whether it wanted to send out malware or spam depending on the criminal's business model.
"One of the big factors about the Storm botnet is the peer to peer approach, which means it's much more difficult to disrupt the botnet from a security research point of view," said Message Labs' senior analyst Paul Wood.
"It's also not just a mail sending engine. You can also use it for hosting websites, launching denial of service attacks and hosting DNS services as well," added Wood. "It is very flexible in terms of what it can be used for."
Wood advised end-users to be very careful about what they were clicking when it came to email. Also, he said to be aware to what security measures they would be able to take, such as implementing firewalls and making sure businesses were up to date with patches and anti-virus software.
He also advised users to be aware of social engineering attacks. Wood said: "Some targeted attacks will use information gathered from other areas of the internet to make the dressing up of the malware attacks more convincing."
The report said that 11 per cent of companies were now blocking access specifically to Facebook compared to three per cent who have pro-actively set up rules to allow access.
"Businesses are now becoming wise to the possible impact of social networking and pro-actively raising their defence barriers against data loss, threats and employee productivity," said Sunner.
"Moreover, the possibility of spoofing Facebook accounts is no longer an impossible notion and may be the next major aspect in identity theft," he added.
advertisement
Latest Internet Features
The continued curse of cybersquatting
For some, it’s a problem confined to the early days of the Internet. But current figures suggest that the cybersquatting problem is, if anything, growing.
- Where next for Microsoft, Yahoo and Google?
- Top 10 reviews of 2008
- The year in IT news
- Top 10 security stories of 2008
- 15 tech charities that need your help
- Christmas Gadget Roundup
- Why enterprise search is not internet search
- Web helps Wiggly Wigglers win big
- Netbooks vs. Smartphones: Making business mobile
Latest Internet Reviews
EXCLUSIVE - eSoft ThreatWall 250
Rating: 
advertisement
Latest News Videos in Internet
Video: Q&A with Easynet Connect's Chris Stening
PlayIT PRO spoke to Chris Stening, managing director of Easynet’s SME division, about whether ISPs are giving businesses the service they deserve.
White papers
Want more background on today's hottest IT trends?
Visit IT PRO's white paper library for more on virtualisation, encryption and other topics.
Register for IT PRO
You'll get exclusive member benefits including free white papers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
Social Bookmark this article: What is this?