Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).


+ - New Waledec Botnet Variant Sniffs Passwords->

Submitted by wiredmikey
wiredmikey (1824622) writes "The Waledec botnet, which was taken down in 2010 by Microsoft, was responsible for more spam delivery than any other botnet in its class with a reach of about 1.5 billion emails a day. Earlier this month, researchers at Palo Alto Networks discovered a third variant of the botnet, and it was serving up more than just spam.

According to the researchers, this new version includes the ability to sniff user credentials for FTP, POP3, SMTP, and steal .dat files for FTP and BitCoin, all of which can be uploaded to the botnet, and of course be very valuable for enabling further attacks.

While Palo Alto Networks discovered a third variant, following Microsoft’s takedown of Waledec, Shadowserver’s Steven Adair discovered a second variant in early 2011. A month later, researchers from malware intelligence firm Last Line were able to examine the botnet code and discovered 123,920 FTP account credentials. In addition to the FTP access, they discovered nearly 500,000 credentials used for POP3 services.

Just last week Symantec noticed Waledac spreading spam in what appears to have been an attempt at political activism.

So while the original botnet has been taken down and remains under the control of Microsoft, thse new variant pose new risks to users and organizations."

Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

New Waledec Botnet Variant Sniffs Passwords

Comments Filter:

If you steal from one author it's plagiarism; if you steal from many it's research. -- Wilson Mizner