Video | Agriculture | Confidence | Economy | Energy | Employment | Finance | Media | Property | RBNZ | Science | SOEs | Tax | Technology | Telecoms | Tourism | Transport | Search

 


Symantec and Microsoft Tackle Click Fraud Botnet

Symantec and Microsoft Tackle Click Fraud Botnet

Symantec and Microsoft have joined forces to successfully tackle the Bamital botnet, which helped cyber gangs steal more than US$1.1 million annually.

Symantec has been tracking this botnet since late 2009 and recently partnered with Microsoft to identify and shut down all known components vital to the botnet's operation.

Bamital is a malware family whose primary purpose is to hijack search engine results, redirecting clicks to an attacker controlled command-and-control (C&C) server. The C&C server redirects the results to websites of the attackers' choosing.

Bamital also has the ability to click on advertisements without user interaction. This results in poor user experience when using search engines along with an increased risk of further malware infections.

The malware’s origin can be tracked back to late 2009 and has evolved through multiple variations over the past couple of years. Bamital has primarily propagated through drive-by-downloads and maliciously modified files in peer-to-peer (P2P) networks.

From analysis of a single Bamital C&C server over a six-week period in 2011 we were able to identify more than 1.8 million unique IP addresses communicating with the server, and an average of three million clicks being hijacked on a daily basis.

Recent information from the botnet shows the number of requests reaching the C&C server to be well over one million per day.

Clickfraud, the name used for the type of fraud committed by Bamital, is the process of a human or automated script emulating online user behaviour and clicking on online advertisements for monetary gain.

Bamital redirected end users to ads and content which they did not intend to visit. It also generated non-human initiated traffic on ads and websites with the intention of getting paid by ad networks.

Bamital was also responsible for redirecting users to websites peddling malware under the guise of legitimate software. The following video illustrates how Bamital exploits the online advertising model: http://www.symantec.com/tv/allvideos/details.jsp?vid=2142222223001&subcategory=security_response&pid=1

Bamital is just one of many botnets that utilise clickfraud for monetary gain and to foster other cybercrime activities. Many of the attackers behind these schemes feel they are low risk as many users are unaware that their computers are being used for these activities.

This takedown sends a message to those attackers that these clickfraud operations are being monitored and can be taken offline.

For further details on Bamital's activities you can download a copy of our whitepaper.

Details on recovering from a Bamital infection are available here: http://www.norton.com/bamital. Users of up-to-date Symantec security products are protected against Bamital and its variants.

Symantec Security Response would like to acknowledge Spain's Civil Guardia, Catalunyan CERT (CESICAT), and Microsoft for assisting us in understanding and ultimately bringing this botnet to its demise.

ends

© Scoop Media

 
 
 
 
 
Business Headlines | Sci-Tech Headlines

 

Science: Hookworm Discovery At Malaghan Institute

Professor Graham Le Gros has led a team which has stimulated both innate and memory responses to the parasite, discovering along the way the unexpected behaviour of one particular immune cell, in Hookworm, one of the world’s most devastating tropical ... More>>

Business: Provinces Urged To Make Full Use Of New Air Services

Provincial New Zealand has been urged to use new air services to Auckland or risk losing them either partially or completely. The stark warning was issued today by Far North mayor John Carter at a ceremony at Kaitaia airport to mark the final Air ... More>>

Mobile: 2degrees To Credit All Calls And SMS To Nepal

In the wake of the devastating earthquake in Nepal in the weekend, 2degrees will be crediting all calls and SMS messages made to mobiles and landlines in Nepal from Friday 24th April until midnight Wednesday 29th April. More>>

Scoop Business: Alex Swney Pleads Guilty To $2.5M Fraud Charge

Alex Swney, former chief executive of the Auckland city centre business association Heart of the City, has pleaded guilty to dishonestly using documents to obtain $2.5 million. More>>

ALSO:

Petrol Burns Prices: Second Consecutive Quarterly Fall For CPI

The consumers price index (CPI) fell 0.3 percent in the March 2015 quarter, following a 0.2 percent fall in the December 2014 quarter, Statistics New Zealand said today. The last time the CPI showed two consecutive quarterly falls was in the December 1998 and March 1999 quarters. More>>

ALSO:

Scoop Business: NZ Broadcasters Launch Battle Against Global Mode ISPs

New Zealand broadcasters have confirmed they’ve launched legal proceedings against internet service providers who give customers’ access to “global mode”, which allows customers access to offshore online content, claiming it breaches the local content providers’ copyright. More>>

ALSO:

Sanford: Closure Of Christchurch Mussel Processing Plant Confirmed

The decision comes after a period of consultation with the 232 staff employed at the Riccarton site, who were told on 9 April that Sanford was considering the future of mussel processing in Christchurch. Recent weather patterns had impacted on natural spat (offspring) supply... More>>

ALSO:

Price Of Cheese: Dairy Product Prices Fall To The Lowest This Year

Dairy product prices fell in the latest GlobalDairyTrade auction, hitting the lowest level in the 2015 auctions so far, as prices for milk powder and butter slid amid concern about the outlook for commodities. More>>

ALSO:

Houston, We Have An Air Route: Air New Zealand To Fly Direct To The Heart Of Texas

Air New Zealand will fly its completely refitted Boeing 777-200 aircraft between Auckland and Houston up to five times a week opening up the state of Texas as well as popular nearby tourist states such as Louisiana and Florida. More>>

ALSO:

Get More From Scoop

 
 
 
 
 
 
 
 
 
Business
Search Scoop  
 
 
Powered by Vodafone
NZ independent news