"We continue to see new installs happening at a rate of about 1,600 per day with broad geographic distribution," said Tripp Cox, Damballa's vice president of engineering, in a statement. Infected installations are continuing to appear at a rapid rate, according to the company. The software is primarily designed to download and install other malicious packages under a 'pay-per-install' scheme, under which the botmasters are paid based on the number of other pieces of malware they cause to be installed, Damballa said. The pirated software was spread via popular piracy sites and online forums, Damballa said. The software, which first appeared on 24 April, spread as quickly as several hundred new bots per hour, and controlled roughly 27,000 bots by the time Damballa took over the network's command and control server on 10 May, the firm said on Tuesday.
A pirated version of Windows 7 Release Candidate (RC) infected with a Trojan horse has created a botnet with tens of thousands of bots under its control, according to researchers at security firm Damballa.
0 kommentar(er)
