Sunday

Kneber Botnet (Network Security Cyberinfection)

Kneber Botnet Details:
  • Massive botnet - a variant of the ZeuS botnet, which is known primarily for stealing banking credentials.
  • It is considered the most dangerous type of botnet in operation by the security firm Damballa.
  • Named after the username (hilarykneber@yahoo.com) linking the affected machines worldwide.
  • Found by security researchers at Herndon, Va. based NetWitness Corp - discovered January 26, 2010.
  • Affecting at least 75,000 computers at 2,500 companies & government agencies worldwide.
  • The botnet gathers - login credentials to online financial systems, social networking sites and e-mail systems.
  • Has been active for the past 18 months (as at February 2010), since late 2008.
  • Attacks appear to have originated in in Europe & China.
  • The systems compromised by the botnet also give attackers remote access inside the compromised network.
  • More than 50% of the infected systems in the Kneber botnet also contain the competing Waledac Trojan.
  • Claimed that it is sold for about $4,000 per copy, with many cybergangs using it to create botnets.
Netwitness Discovery Of A 75GB Cache of Stolen Data:
  • 68,000 corporate login credentials.
  • Login data for user accounts at Facebook, Yahoo & Hotmail.
  • 2,000 SSL certificate files.
  • Large amount of highly detailed "dossier-level" identity information.
Organizations Affected (Wall Street Journal Report):
  • Merck & Co.,
  • Cardinal Health Inc.,
  • Paramount Pictures and
  • Juniper Networks Inc.
  • Systems belonging to 10 government agencies had also been penetrated.
Countries Most Affected:
  • Egypt
  • Mexico
  • Saudi Arabia
  • United States
  • Turkey

Posted by ALCHEssMIST.
Alchemipedia | Home | Index | AZ | Numbers | Years | Animals | Architecture | Art | Business | Fashion | Films | Food & Drink | Games | Health | History | Literature | Media | Music | People |Politics | Science | Sport | Technology | World |

No comments:

 
Web Statistics