Million dollar botnet Bamital taken down

A major clickfraud Trojan that’s been operating for more than three years and reaped more than $1.1 million in returns for its operators has been shut down, Symantec Corp. announced this morning.

Working with Microsoft Corp. to root out the infrastructure that the Bamital malware relied upon, Symantec says it has taken down the botnet. The security software vendor has been tracking the botnet’s activities since 2009 and working to detail its inner workings. This particular malware was known to infect users by targeting popular search engine results for key terms, then either embedding malware in legitimate Web sites or setting up malicious Web sites to drop the clickjacking software on a user’s PC.

Once on a computer, the malware can redirect users PCs to click on advertisements that result in revenue generation for the operators. It also opens the users up to further malware to be loaded on to their systems.

A six-week monitoring period of Balmital revealed 1.8 million unique IP addresses communicating with its command and control server, Symantec says. That resulted in an average of three million clicks hi-jacked per day.

Source | Symantec Blog

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

Brian Jackson
Brian Jacksonhttp://www.itbusiness.ca
Editorial director of IT World Canada. Covering technology as it applies to business users. Multiple COPA award winner and now judge. Paddles a canoe as much as possible.

Related Tech News

Get ITBusiness Delivered

Our experienced team of journalists brings you engaging content targeted to IT professionals and line-of-business executives delivered directly to your inbox.