Kneber Botnet Follows in Conficker's Footsteps
Kneber Botnet Follows in Conficker's Footsteps
Posted 02/19/2010 at 6:24am
| by Paul Lilly
4
Comments
Print
There's a new botnet in town, and this one has the potential to trump Conficker, says security firm Netwitness, which discovered the botnet. According to Netwitness, the Kneber botnet has already infected more than 74,000 macnines worldwide.
Netwitness describes Kneber as a ZeuS Trojan botnet, and more than half of the systems infected also have the Waledac Trojan, the same worm that was used to create email spam botnets assoicated with Conficker. But unlike Conficker, whose dastardly deeds have yet to be revealed, Netwitness says Kneber has been designed to target and steal login credentials and other private information.
Kneber has been found in 196 countries so far, but is most prominent in Egypt, Mexico, Saudi Arabia, Turkey, and the U.S. It targets Windows machines, most of which include Windows XP Professional SP2, and most of which reside in corporate and government infrastructures.
According to Netwitness, Kneber has nabbed some 68,000 login credentials in the past 4 weeks.
Image Credit: gosublogger.com
More like this
4
Comments
Comments are closed on this article
suprattalljdm
February 19, 2010 at 11:37am
Today my step dad comes into work and tells me his comp at home is infected and from what he told me I am worried that this is what they got. Any extra advice or steps I need to take other than normal malware removal?
Sebie Kay
February 19, 2010 at 10:35am
Perhaps Confliker and Kneber were made by the same person/group. Confliker, as we can tell, doesn't really do anything. So perhaps it was a test run of programing: Fool the security companies into reveling their hands about how they combat certain threats. Thus, Kneber and future rouge programs can avoid or work around those threats.
Is this possible? I think so. Given the increase with cyber crimes and the economy taking it's dump, these crooks are looking into long term plan, not JUST thinking of making a quick buck. After all, lots of these rouge programs are made by structured organizations that have one plan: make profit.
-=Do unto others... THEN RUN!!=-
Member2600
February 19, 2010 at 3:32pm
that is the most paranoid, yet possible comment on a virus topic I have ever seen. Sounts like the makings of a good book.
Connect with MaximumPC
Featured Content
The gang discusses the GTX 690, Trinity, Ivy Bridge, Amazon, big-box stores, MMOs,...
This month's issue
Feature
Build a PC On Any Budget
Feature
Cloud Services Showdown
How-To
Encrypt Your External Drive
Build It
Upgrade an X58 Rig
Most Commented Articles
Latest Max PC Tweets
- maximumpc: Original RickRoll Video Returns to YouTube After 24-Hour Copyright Hiatus http://t.co/MaH9Sxyy1 day 18 hours ago
- maximumpc: Corsair has decided not to go forward with its $78 million IPO, citing weak equity market conditions http://t.co/A5a4DAzj1 day 18 hours ago
- maximumpc: Want to work at Maximum PC? Our Online Managing Editor, Alex, is moving away, so we need a new one. http://t.co/9Z7JCh0E3 days 15 hours ago
