blog entry | DataProtectionCenter.com

FAQ: Disabling the new Hlux/Kelihos Botnet

28

Mar

2012

Q: What is the Hlux/Kelihos botnet? A: Kelihos is Microsoft’s name for what Kaspersky calls Hlux. Hlux is a peer-to-peer botnet with an architecture similar to the one used for the Waledac botnet. It consists of layers of different kinds of nodes: controllers, routers and workers. Q: What is a peer-to-peer botnet? A: Unlike a […]

Category General Written by Securelist / Blog 0 Comments

Accused Kelihos malware mastermind protests his innocence

31

Jan

2012

Andrey Sabelnikov, who Microsoft accused last week of being the mastermind behind the Kelihos botnet, has protested his innocence. The 31-year-old programmer from St Petersburg became the subject of headlines around the world after Microsoft told US courts that they believed he created the Kelihos malware, and alleged that he “used the malware to control, […]

Category General Written by Naked Security - Sophos 0 Comments

Galaxies Collide

21

Oct

2011

Duqu contains a backdoor that steals information. Infostealers need to send the stolen info back somehow. Careful infostealers try to make the transfer look innocent in case somebody is watching network traffic. Duqu hides it’s traffic by making it look like normal web traffic. Duqu connects to a server (206.183.111.97 aka canoyragomez.rapidns.com, which used to […]

Category General Written by F-Secure Antivirus Research Weblog 0 Comments

The Latest in IT Security

Posts Tagged ‘blog entry’

FAQ: Disabling the new Hlux/Kelihos Botnet

Accused Kelihos malware mastermind protests his innocence

Galaxies Collide

Categories

Featured

Archives

Latest Comments

About Us

Contact Us