• 3000005: On the subject of Botnets

    Home » Forums » Knowledge Base » 3000005: On the subject of Botnets

    Tags:

    Author
    Topic
    Kirsty
    Manager
    October 19, 2017 at 1:48 am #138848

    AKB3000005: On the subject of Botnets

    by Kirsty

    Published October 19, 2017 | Rev. 1.1

     
    According to Wikipedia, “A botnet is a number of Internet-connected devices, each of which is running one or more bots. Botnets can be used to perform distributed denial-of-service
    attack (DDoS attack), steal data, send spam, and allow the attacker access to the device and its connection…a logical collection of internet connected devices such computers, smartphones or IoT devices whose security has been breached and control ceded to a third party.”

    Kaspersky states that networks of zombie machines become tradable, either by sale or lease, between cybercriminals, to perform Ddos, spam attacks and other cyber attacks.

    A DDos is a Distributed Denial of Service attack, which is designed to make unavailable either websites, machines or network-connected computers, by flooding the network with incoming traffic from numerous sources, which may involve genuine or spoofed IP addresses.

    Malicious email attachments and clicking on dodgy internet links are two methods of being infected with botnet malware. There have been several topics on botnets posted on Askwoody in recent months.

    It’s quite possible to be part of a botnet, without being aware of the fact. In order to make money from cybercrime, they are often hidden from sight, gathering your personal data as you use your valuable personal details (like your passwords, credit card details, social security numbers and the like. In fact, you may not even notice your computer is any slower than normal – nothing may appear wrong, yet you may be infected.

    BleepingComputer have reported on an IoT (Internet of Things) botnet which, instead of being designed for DDOS attacks, has “the ability to relay web traffic by installing a proxy server on infected devices” and is behind a wave of adult-themed spam messages..

    Groovypost.com have some suggestions to prevent becoming part of a botnet, such as to use an alternative DNS provide, such as OpenDNS, router security, Windows process oversight and free botnet checks.

    Kaspersky publicised its page to check if your IP address is associated with a botnet about the time Simda was wild. The page is still a useful check to see if you are clear:
    https://checkip.kaspersky.com/

    5 users thanked author for this post.
    Lori, cesmart4125, Elly, HiFlyer, Microfix
    Reply | Quote
    Viewing 1 reply thread
    Author
    Replies
    • Kirsty
      Manager
      October 20, 2017 at 2:28 pm #139218

      Note: new Botnet threat information has been posted in Code Red – security advisories

      1 user thanked author for this post.
      Elly
      Reply | Quote
    • GeoffB
      AskWoody Plus
      June 16, 2021 at 11:39 pm #2371925

      I check on AKB 3000005 from time to time to check my IP address, as my ISP will change my IP address occassionally. In the last day or 2 I’ve noticed that clicking on the ‘checkip.kaspersky.com link in AKB 3000005 above shows not just my ip address, but another ip address as well. This other IP address commences ’82… which is apparently a Kaspersky IP address. I’ve checked on a couple of other pcs in the local library and the same thing happens; the ‘local’ IP address and a Kaspersky address.
      So, have I inadvertently become part of a botnet, or has the link been compromised.

      Appreciate any advice on this.

      regards

      GeoffB

      Reply | Quote
      • Paul T
        AskWoody MVP
        June 20, 2021 at 6:40 am #2372419

        I think checking your IP is a waste of time as IP addresses change and a suspect IP is not an indication of anything.
        It’s also good advertising for the site…

        cheers, Paul

        Reply | Quote
    Viewing 1 reply thread
    Reply To: 3000005: On the subject of Botnets

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    April 2025
    S M T W T F S
     12345
    6789101112
    13141516171819
    20212223242526
    27282930  

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.