Cable Forum - View Single Post - 'Two weeks' to block cyber-attack

Qtx · 02-06-2014, 21:45

The authorities can take over C&C's but not that great at doing much beyond that. They could send updates to the zombies that made the infection inert but they would need to know the right keys and Zeus uses encryption which is different per zeus-customer.

Gameover variant of Zeus can update over peer-to-peer so it doesnt really need the domains and control centre box's. They need to take down the infection methods or the botnet will still grow. The Cutwail spam botnet and servers with Magnitude exploit kit's are still adding more zombies to the gameover botnet every day.

Malware writers are winning the technical game but they can't code around arrest warrants...

02-06-2014, 21:45	#3
Qtx Inactive Join Date: May 2012 Location: Probably outside the M25 Services: Sky Fibre Unlimited 40/10 Posts: 3,473	Re: 'Two weeks' to block cyber-attack The authorities can take over C&C's but not that great at doing much beyond that. They could send updates to the zombies that made the infection inert but they would need to know the right keys and Zeus uses encryption which is different per zeus-customer. Gameover variant of Zeus can update over peer-to-peer so it doesnt really need the domains and control centre box's. They need to take down the infection methods or the botnet will still grow. The Cutwail spam botnet and servers with Magnitude exploit kit's are still adding more zombies to the gameover botnet every day. Malware writers are winning the technical game but they can't code around arrest warrants...