IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Botnet creators return with Bredolab trojan

The authors of the Cutwail botnet are fighting back to get more market share.

computer gasmasks

This month has seen a large surge in spam carrying a trojan called Bredolab, with a security researcher suggesting this was due to cyber criminals trying to regrow the Cutwail botnet.

Paul Wood, a senior analyst at Symantec, said that Bredolab has existed since April and May in relatively small numbers, but its use had dramatically grown in the last month.

Bredolab is a downloader used to "drop" malware on machines and could be used to infect computers to add to the Cutwail botnet.

It was found in attachments coming from spam mail sent by computers under the Cutwail botnet, which has seen its own numbers decrease in the past year due to ISP shutdowns.

The Cutwail botnet decreased from sending around 45 per cent of spam at the beginning of the year to only 11 per cent in September.

Wood said this could mean that the Cutwail malware authors were trying to respread Cutwail to make up for its losses.

"Cutwail is one of those botnets earlier [that] in the year was very large, but it's been overtaken by a number of other botnets," he said.

"There's definitely some activity to try and increase its coverage," he added.

Featured Resources

Accelerating AI modernisation with data infrastructure

Generate business value from your AI initiatives

Free Download

Recommendations for managing AI risks

Integrate your external AI tool findings into your broader security programs

Free Download

Modernise your legacy databases in the cloud

An introduction to cloud databases

Free Download

Powering through to innovation

IT agility drive digital transformation

Free Download

Recommended

What is a Trojan?
Security

What is a Trojan?

27 Aug 2021

Most Popular

LockBit 2.0 ransomware disguised as PDFs distributed in email attacks
Security

LockBit 2.0 ransomware disguised as PDFs distributed in email attacks

27 Jun 2022
Open source giant Red Hat joins HPE GreenLake ecosystem
automation

Open source giant Red Hat joins HPE GreenLake ecosystem

28 Jun 2022
Carnival hit with $5 million fine over cyber security violations
cyber security

Carnival hit with $5 million fine over cyber security violations

27 Jun 2022