Botnet | DataProtectionCenter.com

Kelihos botnet: What victims can expect

28

Aug

2013

There is has been a recent surge in security blogs warning users to be extra cautious of a new spin on an old threat. Kelihos is a botnet which utilizes P2P communication to maintain its CnC Network. With all of the attention around Kelihos, it should be no surprise that 30/45 AV vendors are detecting the […]

Category Security Written by Zscaler Research 0 Comments

Header Spoofing Hides Malware Communication

29

Jul

2013

Spoofing – whether in the form of DNS, legitimate email notification, IP, address bar – is a common part of Web threats. We’ve seen its several incarnations in the past, but we recently found a technique known as header spoofing, which puts a different spin on evading detection.Header spoofing is when a URL appears to […]

Category General Written by Security Intelligence 0 Comments

Tracking a botnet infection

11

Jul

2013

Recently we found several malicious executables with similar characteristics. These files were found on the following six domains: janashfordplumbing.com kalliskallis.com lowes-pianos-and-organs.com continental1.com foreigntire.com gjhimages.com The URLs used, adhered to the following two formats: http://www.[domain].com/awstats6_data/[a-f0-9]{10}/?f=sm_main.mp3&k=[0-9]{15} http://www.[domain].com/images/[folder]/[folder]/[a-f0-9]{10}/?f=sm_main.mp3&k=[0-9]{15} These six domains are otherwise legitimate sites that have been compromised and used to serve malicious content. While I didn’t […]

Category Security Written by Zscaler Research 0 Comments

The Latest in IT Security

Posts Tagged ‘Botnet’

Kelihos botnet: What victims can expect

Header Spoofing Hides Malware Communication

Tracking a botnet infection

Categories

Featured

Archives

Latest Comments

About Us

Contact Us