Botnets to 'hide in plain view' in 2011

Powered by SC Magazine

Botnets will hide within files rather than coming through nasty downloads.

The way botnets attack our computers is set to change in 2011, with the malicious programs hiding within files.

Whilst botnets traditionally come in the form of downloads which sneak onto users’ machines by exploiting vulnerabilities, Symantec has claimed next year will see them integrated into files passed over file sharing sites or social networks, making them harder to detect.

The company’s MessageLabs Intelligence 2010 security report claimed there were between 3.5 and 5.4 million botnets creeping around the globe last year, with Rustock, Grum and Cutwail taking the top spots as the largest threats.

Rustock sent out more than 44 billion spam emails per day, more than double compared to last year, and controlled over one million machines. The figure of 95 percent of spam emails coming from botnets was thanks to Rostock, the report claimed.

"With successful and resilient botnet operations established in prior years, the cyber criminals experimented with many tactics to keep spam campaigns active and fresh this year," said Paul Wood, MessageLabs Intelligence senior analyst.

"From leveraging newsworthy events like the FIFA World Cup to taking advantage of the widespread popularity of URL shortening services and social networks, the spammers deployed a variety of tricks to bypass spam filters and lure potential victims."

Businesses must be just as wary as consumers with the threats we face, claimed the company, as targeted attacks on companies of all sizes were becoming more prevalent.

"With the rise of targeted attacks comes variations in the execution and attack complexity," Wood said.

"Typically, between 200 and 300 organisations are targeted each month but the industry sector varies and high seniority job roles are most frequently targeted yet often by way of a general or assistant's mailbox.”

“While five years ago large and well-known organisations were often targeted, today the scope of targeted organisations has expanded and now no organisation is safe from attack,” he added.

This article originally appeared at

Copyright © ITPro, Dennis Publishing

Botnets to 'hide in plain view' in 2011
Top Stories
Myer CIO named retailer's new chief executive
Richard Umbers to lead data-driven retail strategy.
Empty terminals and mountains of data
Qantas CIO Luc Hennekens says no-one is safe from digital disruption.
BoQ takes $10m hit on Salesforce CRM
Regulatory hurdles end cloud pilot.
Sign up to receive iTnews email bulletins
Latest Comments
Who do you trust most to protect your private data?

   |   View results
Your bank
Your insurance company
A technology company (Google, Facebook et al)
Your telco, ISP or utility
A retailer (Coles, Woolworths et al)
A Federal Government agency (ATO, Centrelink etc)
An Australian law enforcement agency (AFP, ASIO et al)
A State Government agency (Health dept, etc)

Do you support the abolition of the Office of the Information Commissioner?

   |   View results
I support shutting down the OAIC.
I DON'T support shutting the OAIC.