BotNet News

Your source for Online Security News

A Botnet is a network of hijacked internet-connected devices – PCs, servers, mobile phones, and even IoT devices like security cameras or printers – infected with malware that allows the attacker to remotely control them. When a device gets roped into a botnet, the attacker aka the “Bot herder” can use it to perform various illegal actions including collecting personal data for online fraud or generating malicious traffic for Distributed Denial of Service (DDoS) attacks.

To get started, an attacker needs to infect a device with a malware that connects it back to the hacker/cybercriminal’s command center. One popular way to do this is by embedding a bot program in an exploit kit hosted on a website that probes every visitor’s devices for an open port or other vulnerability that can be exploited. If the exploit kit finds a vulnerable device, it silently installs the bot software to make that device part of the attack.

When the hacker is ready, they can begin recruiting the enslaved devices into a centralized network of zombie computers he or she controls. Then they can deploy commands to the bots and initiate an attack.

To prevent an attack, users and administrators can quarantine their devices so that they no longer communicate with the central botnet server or at least run antivirus software to detect and remove any malicious software. They can also clean their devices by flashing the firmware, running a factory reset or reformatting.