MalwareIntelligence is a site dedicated to research on all matters relating to anti-malware security, criminology computing and information security in general, always from a perspective closely related to the field of intelligence.


BOMBA Botnet. New alternative crimeware fuel the economy criminal

In a recent survey, Francisco Ruiz, Crimeware Researcher of MalwareIntelligence, broke through the security barriers of a new recruit crimeware designed to automate the running zombies and mass and scale of cyber crimes that are carried out using a vector of attack committed teams as part of the botnet.

These BOMBA, which is accessed via web and which authentication system is based only on the requirement of a password, an access system adopted by many applications of this kind between highlighting Phoenix Exploit's Kit and n0ise Bot.

The server that hosts this crimeware has base in Latvia (although the administrative record is in Moscow, Russia) under the AS6851 (Autonomous System) which is known as the network BKCNET "SIA" Izzie.

ASN This server is listed as criminal activities such as the spread of rogue, shelter kits and other YES Exploit System, in 2009 I host the strategies of the botnet Waledac (successor to Storm), ZeuS and also to have direct relationship with criminals who are behind the maneuvers of the botnet Koobface.

The package is designed to exploit vulnerabilities through the family of Microsoft operating systems, as shown in the illustration below, Windows XP, Windows Vista and Windows Seven, and through precompiled exploits to exploit vulnerabilities in Java (Java Deployment Toolkit ), Internet Explorer, Adobe Reader and the classic MDAC.

While it does not pose an alternative complex in structure, no longer a serious threat adds to demand criminal and inserted into the circuit of illegal actions.

Related Information

1 comentarios:

Water Treatment said...

This is a brilliant diagram of the Bomba botnet, it looks like a very serious threat.

Post a Comment