Jump to content

Botnet demise


Farelf

Recommended Posts

From the pages of ars technica Police nab Shadow creators, force botnet to commit suicide

...The arrests actually occurred several weeks ago, on July 29, but it's what happened afterwards that has made this situation interesting. Instead of simply shutting the botnet down, the High Crime Tech Unit took control of it. Once Shadow was secured, the police contacted Kaspersky Labs about providing a means to neutralize the malware. Kaspersky has made their fix public, and will also deploy the instructions over the Shadow botnet itself.
Thanks to "Retired" at grc newgoups for bringing this one to light.
Link to comment
Share on other sites

And to the Dutch police, a hearty "Dank u wel en Gelukwensen"
Indeed. Just as long as they don't send out emails saying "You may have heard of our success ... apologies that some of our countrymen ... however to address this, we provide here the link here for you to download ..." :D

[on edit] Having said that, I had best point to Shadowbot Removal Instructions (Kapersky) or (for the really paranoid) http://85.12.57.107/shadowbot given

C:\Documents and Settings\Steve>nslookup kaspersky.com

...

Non-authoritative answer:

Name: kaspersky.com

Address: 85.12.57.107

If my cache is reliable (bearing in mind DNS vulnerability) ... if the recently-announced nslookup vulnerability hasn't been exploited if ... darn, it never ends, does it?

Anyway Police start notifying botnet victims (Techworld) for more, including the Kapersky link.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...