Tens of thousands strong
Published: 14 May 2009 08:54 GMT
A pirated version of Windows 7 Release Candidate (RC) infected with a Trojan horse has created a botnet with tens of thousands of bots under its control, according to researchers at security firm Damballa.
The software, which first appeared on 24 April, spread as quickly as several hundred new bots per hour, and controlled roughly 27,000 bots by the time Damballa took over the network's command and control server on 10 May, the firm said on Tuesday.
The pirated software was spread via popular piracy sites and online forums, Damballa said.
The software is primarily designed to download and install other malicious packages under a 'pay-per-install' scheme, under which the botmasters are paid based on the number of other pieces of malware they cause to be installed, Damballa said.
Infected installations are continuing to appear at a rapid rate, according to the company.
Tripp Cox, Damballa's vice president of engineering, said in a statement: "We continue to see new installs happening at a rate of about 1,600 per day with broad geographic distribution. Since our takedown [of the command and control server], any new installs of this pirated distribution of Windows 7 RC are inaccessible by the botmaster."
However, the botmaster still controls the existing installations, Damballa said. The infected systems are mainly concentrated in the US, with 10 per cent, and the Netherlands and Italy, with seven per cent each.
Windows 7 RC has been used as a lure by other malware distributors since its launch on 5 May, according to security experts. On Monday, Trend Micro said it found the Trojan horse TROJ_DROPPER.SPX masquerading as a copy of the release candidate.
Botnets are one of the most serious threats on the internet, according to security experts, and are typically used to carry out denial-of-service attacks or phishing schemes or to send junk mail.
Last month, SecureWorks researcher Joe Stewart suggested that technology was not enough to stop botnets, arguing the IT industry should look to new law-enforcement measures.
The legitimate version of Windows 7 RC is available from Microsoft's website.
Original article: Pirated Windows 7 RC builds botnet from ZDNet UK
Liaise with customers in completing minor surveys, estimates of labour and material, preparation of proposals for new and existing installation, and ...
In addition you will be required to perform routine maintenance of installed systems at customer sites, maintain and update demonstration equipment ...
Datacentre Installations EngineerResponsibilities:- Plan installations of IT equipment in the datacentre ? Maintain technical and audit documentation ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead
Stephen Kleynhans Mind the details with Windows 7 Just because it might work better than Vista, it doesn't mean you can be sloppy