Another day, another botnet. Or is it?
Earlier today, Webroot Threat Blog champion and malware hunter Dancho Danchev posted a story on ZDNet about Pobelka, a botnet that targeted primarily Dutch and German users via the 'botnet master' using underground traffic exchange networks.
The attacker using the handle "Finist", originally started the campaigns relying on a server-based attack kit know as the "bentpanel, where he even left his email address within the command and control interface in order to receive notifications for the successfully stolen account/bank credentials. He then started using the Black Hole Exploit Kit in an attempt to convert all the Dutch and German traffic he was buying, into crimeware-infected hosts, by dropping SpyEye and Citadel variants on the affected hosts."
Dancho goes on to say that this botnet is a great example of how the cybercrime system works and is of the type that rarely makes the news. Click the aforementioned link for the full story. It's a fascinating read. Oh, and as always, make sure your computers are protected with great internet security!
Dutch security researchers talk Pobelka botnet
Thanks for that link. That is very interesting. Another day, another way!
Reply
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.