Breaking the Botnet Code

11/11/2009

Breaking the Botnet Code

Networks of compromised computers controlled by a central server, better known as botnets, are a Swiss Army knife of tools for online criminals. Hackers can use these co-opted systems to churn out spam, host malicious code, hide their tracks on the Internet, or flood a corporate network to cut off its access to the Web.

Whenever a new botnet appears, researchers race to reverse engineer the software it installs on a victim's machine, and to decode the way each bot communicates with the controlling server. Because these communications are often encrypted, such analyses can take weeks or months. Now researchers from the University of California at Berkeley and Carnegie Mellon University have created a way to automatically reverse engineer the communications between compromised computers and their controlling servers.

Technology Review

Posted at 11:30 AM in Articles, Cybercrime, Published on Technology Review, Research, Security | Permalink

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a01156fb43b96970c0128757b05d2970c

Listed below are links to weblogs that reference Breaking the Botnet Code:

Comments

You can follow this conversation by subscribing to the comment feed for this post.

Verify your Comment

Previewing your Comment

Posted by: |

This is only a preview. Your comment has not yet been posted.

Your comment could not be posted. Error type:

Your comment has been saved. Comments are moderated and will not appear until approved by the author. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Robert Lemos

... the articles and musings of a technology and science journalist

Recent Posts

Categories

11/11/2009