Video | Agriculture | Confidence | Economy | Energy | Employment | Finance | Media | Property | RBNZ | Science | SOEs | Tax | Technology | Telecoms | Tourism | Transport | Search

 


Symantec and Microsoft Tackle Click Fraud Botnet

Symantec and Microsoft Tackle Click Fraud Botnet

Symantec and Microsoft have joined forces to successfully tackle the Bamital botnet, which helped cyber gangs steal more than US$1.1 million annually.

Symantec has been tracking this botnet since late 2009 and recently partnered with Microsoft to identify and shut down all known components vital to the botnet's operation.

Bamital is a malware family whose primary purpose is to hijack search engine results, redirecting clicks to an attacker controlled command-and-control (C&C) server. The C&C server redirects the results to websites of the attackers' choosing.

Bamital also has the ability to click on advertisements without user interaction. This results in poor user experience when using search engines along with an increased risk of further malware infections.

The malware’s origin can be tracked back to late 2009 and has evolved through multiple variations over the past couple of years. Bamital has primarily propagated through drive-by-downloads and maliciously modified files in peer-to-peer (P2P) networks.

From analysis of a single Bamital C&C server over a six-week period in 2011 we were able to identify more than 1.8 million unique IP addresses communicating with the server, and an average of three million clicks being hijacked on a daily basis.

Recent information from the botnet shows the number of requests reaching the C&C server to be well over one million per day.

Clickfraud, the name used for the type of fraud committed by Bamital, is the process of a human or automated script emulating online user behaviour and clicking on online advertisements for monetary gain.

Bamital redirected end users to ads and content which they did not intend to visit. It also generated non-human initiated traffic on ads and websites with the intention of getting paid by ad networks.

Bamital was also responsible for redirecting users to websites peddling malware under the guise of legitimate software. The following video illustrates how Bamital exploits the online advertising model: http://www.symantec.com/tv/allvideos/details.jsp?vid=2142222223001&subcategory=security_response&pid=1

Bamital is just one of many botnets that utilise clickfraud for monetary gain and to foster other cybercrime activities. Many of the attackers behind these schemes feel they are low risk as many users are unaware that their computers are being used for these activities.

This takedown sends a message to those attackers that these clickfraud operations are being monitored and can be taken offline.

For further details on Bamital's activities you can download a copy of our whitepaper.

Details on recovering from a Bamital infection are available here: http://www.norton.com/bamital. Users of up-to-date Symantec security products are protected against Bamital and its variants.

Symantec Security Response would like to acknowledge Spain's Civil Guardia, Catalunyan CERT (CESICAT), and Microsoft for assisting us in understanding and ultimately bringing this botnet to its demise.

ends

© Scoop Media

 
 
 
 
 
Business Headlines | Sci-Tech Headlines

 

Cosmetics & Pollution: Proposal To Ban Microbeads

Cosmetic products containing microbeads will be banned under a proposal announced by the Minister for the Environment today. Marine scientists have been advocating for a ban on the microplastics, which have been found to quickly enter waterways and harm marine life. More>>

ALSO:

NIWA: 2016 New Zealand’s Warmest Year On Record

Annual temperatures were above average (0.51°C to 1.20°C above the annual average) throughout the country, with very few locations observing near average temperatures (within 0.5°C of the annual average) or lower. The year 2016 was the warmest on record for New Zealand, based on NIWA’s seven-station series which begins in 1909. More>>

ALSO:

Farewell 2016: NZ Economy Flies Through 2016's Political Curveballs

Dec. 23 (BusinessDesk) - New Zealand's economy batted away some curly political curveballs of 2016 to end the year on a high note, with its twin planks of a booming construction sector and rampant tourism soon to be joined by a resurgent dairy industry. More>>

ALSO:


NZ Economy: More Growth Than Expected In 3rd Qtr

Dec. 22 (BusinessDesk) - New Zealand's economy grew at a faster pace than expected in the September quarter as a booming construction sector continued to underpin activity, spilling over into related building services, and was bolstered by tourism and transport ... More>>

  • NZ Govt - Solid growth for NZ despite fragile world economy
  • NZ Council of Trade Unions - Government needs to ensure economy raises living standards
  • KiwiRail Goes Deisel: Cans electric trains on partially electrified North Island trunkline

    Dec. 21 (BusinessDesk) – KiwiRail, the state-owned rail and freight operator, said a small fleet of electric trains on New Zealand’s North Island would be phased out over the next two years and replaced with diesel locomotives. More>>

  • KiwiRail - KiwiRail announces fleet decision on North Island line
  • Greens - Ditching electric trains massive step backwards
  • Labour - Bill English turns ‘Think Big’ into ‘Think Backwards’
  • First Union - Train drivers condemn KiwiRail’s return to “dirty diesel”
  • NZ First - KiwiRail Going Backwards for Xmas
  • NIWA: The Year's Top Science Findings

    Since 1972 NIWA has operated a Clean Air Monitoring Station at Baring Head, near Wellington... In June, Baring Head’s carbon dioxide readings officially passed 400 parts per million (ppm), a level last reached more than three million years ago. More>>

    ALSO:

    Get More From Scoop

     
     
     
     
     
     
     
     
    Business
    Search Scoop  
     
     
    Powered by Vodafone
    NZ independent news