Network security vulnerabilities exposed by huge botnet

04/03/2010

Millions of PCs were hit by the botnet Millions of PCs were hit by the botnet

Information security was at the heart of one of the world's biggest networks of infected computers, with Spanish police uncovering details of the staggering scale of the so-called Mariposa botnet.

Run by a Spanish gang, the botnet threatened the information security of more than 13 million computers in 190 countries, with a number of high-profile organisations falling victim.

PCs inside hundreds of Fortune 1000 companies as well as dozens of major banks were involved, investigators revealed, posing serious questions over the information risk management and network security settings at the sites.

"It would be easier for me to provide a list of the Fortune 1000 companies that weren't compromised," commented Christopher Davis, chief executive of security firm Defence Intelligence and one of those involved in tracking the botnet.

The botnet was only finally fully uncovered when one of the gang behind the attacks - who are so far known only by their internet names - logged on to the network without disguising the address of his computer.

Spanish police, who had been monitoring the network for several months together with the FBI and global information security experts, were then able to identify one of the gang and have begun to unravel the details of those involved.

The botnet was being used to obtain sensitive and personal information, such as usernames, passwords and banking details.

Worryingly, the men involved were not believed to be sophisticated hackers, but simply made use of malware distribution software.

Liked this news article? Why not sign up to our Industry Newsletter – a summary of the week's news delivered straight to your e-mail account. ADNFCR-1355-ID-19650002-ADNFCR


More in our Archive