Video | Agriculture | Confidence | Economy | Energy | Employment | Finance | Media | Property | RBNZ | Science | SOEs | Tax | Technology | Telecoms | Tourism | Transport | Search

 


Symantec and Microsoft Tackle Click Fraud Botnet

Symantec and Microsoft Tackle Click Fraud Botnet

Symantec and Microsoft have joined forces to successfully tackle the Bamital botnet, which helped cyber gangs steal more than US$1.1 million annually.

Symantec has been tracking this botnet since late 2009 and recently partnered with Microsoft to identify and shut down all known components vital to the botnet's operation.

Bamital is a malware family whose primary purpose is to hijack search engine results, redirecting clicks to an attacker controlled command-and-control (C&C) server. The C&C server redirects the results to websites of the attackers' choosing.

Bamital also has the ability to click on advertisements without user interaction. This results in poor user experience when using search engines along with an increased risk of further malware infections.

The malware’s origin can be tracked back to late 2009 and has evolved through multiple variations over the past couple of years. Bamital has primarily propagated through drive-by-downloads and maliciously modified files in peer-to-peer (P2P) networks.

From analysis of a single Bamital C&C server over a six-week period in 2011 we were able to identify more than 1.8 million unique IP addresses communicating with the server, and an average of three million clicks being hijacked on a daily basis.

Recent information from the botnet shows the number of requests reaching the C&C server to be well over one million per day.

Clickfraud, the name used for the type of fraud committed by Bamital, is the process of a human or automated script emulating online user behaviour and clicking on online advertisements for monetary gain.

Bamital redirected end users to ads and content which they did not intend to visit. It also generated non-human initiated traffic on ads and websites with the intention of getting paid by ad networks.

Bamital was also responsible for redirecting users to websites peddling malware under the guise of legitimate software. The following video illustrates how Bamital exploits the online advertising model: http://www.symantec.com/tv/allvideos/details.jsp?vid=2142222223001&subcategory=security_response&pid=1

Bamital is just one of many botnets that utilise clickfraud for monetary gain and to foster other cybercrime activities. Many of the attackers behind these schemes feel they are low risk as many users are unaware that their computers are being used for these activities.

This takedown sends a message to those attackers that these clickfraud operations are being monitored and can be taken offline.

For further details on Bamital's activities you can download a copy of our whitepaper.

Details on recovering from a Bamital infection are available here: http://www.norton.com/bamital. Users of up-to-date Symantec security products are protected against Bamital and its variants.

Symantec Security Response would like to acknowledge Spain's Civil Guardia, Catalunyan CERT (CESICAT), and Microsoft for assisting us in understanding and ultimately bringing this botnet to its demise.

ends

© Scoop Media

 
 
 
 
 
Business Headlines | Sci-Tech Headlines

 

Power Outages, Roads Close: Easter Storm Moving Down Country

The NZ Transport Agency says storm conditions at the start of the Easter break are making driving hazardous in Auckland and Northland and it advises people extreme care is needed on the regions’ state highways and roads... More>>

ALSO:

Houses (& Tobacco) Lead Inflation: CPI Up 0.3% In March Quarter

The consumers price index (CPI) rose 0.3 percent in the March 2014 quarter, Statistics New Zealand said today. Higher tobacco and housing prices were partly countered by seasonally cheaper international air fares, vegetables, and package holidays. More>>

ALSO:

Notoriously Reliable Predictions: Budget To Show Rise In Full-Time Income To 2018: English

This year’s Budget will forecast wage increases through to 2018 amounting to a $10,500 a year increase in average full time earnings over six years to $62,200 a year, says Finance Minister Bill English in a speech urging voters not to “put all of this at risk” by changing the government. More>>

ALSO:

Prices Up, Volume Down: March NZ House Sales Drop 10% As Loan Curbs Bite

New Zealand house sales dropped 10 percent in March from a year earlier as the Reserve Bank’s restrictions on low-equity mortgages continue to weigh on sales of cheaper property. More>>

ALSO:

Scoop Business: Chorus To Appeal Copper Pricing Judgment

Chorus will appeal a High Court ruling upholding the Commerce Commission’s determination setting the regulated prices on the telecommunications network operator’s copper lines. More>>

ALSO:

Earlier:

Cars: Precautionary Recalls Announced For Toyota Vehicles

Toyota advises that a number of its New Zealand vehicles are affected by a series of precautionary global recalls. Toyota New Zealand General Manager Customer Services Spencer Morris stressed that the recalls are precautionary. More>>

ALSO:

'Gardening Club': Air Freight Cartel Nets Almost $12 Million In Penalties

The High Court in Auckland has today ordered Swiss company Kuehne + Nagel International AG to pay a penalty of $3.1 million plus costs for breaches of the Commerce Act. Kuehne + Nagel’s penalty brings the total penalties ordered in this case to $11.95 million ... More>>

ALSO:

Crown Accounts: Revenue Below Projections

Core Crown tax revenue has increased by $1.9 billion (or 5.0%) compared to the same time last year. However this was $1.1 billion less than expected and is reflected across most tax types, continuing the pattern of recent months. More>>

ALSO:

Get More From Scoop

 
 
Computer Power Plus
 
 
 
 
 
 
 
 
Business
Search Scoop  
 
 
Powered by Vodafone
NZ independent news