Huge 'botnet' amputated, but criminals reconnect

The sudden takedown of an Internet provider thought to be helping spread one of the most promiscuous pieces of malicious software out there appears to have cut off criminals from potentially millions of personal computers under their control.

But the victory was short-lived. Less than a day after a service known as "AS Troyak" was unplugged from the Internet, security researchers said Wednesday it apparently had found a way to get back online, and criminals were reconnecting with their unmoored machines.



The drama initially raised hopes of a sharp drop-off in fraud, because criminals could no longer communicate with many computers infected with a type of malware known as "ZeuS," which is mostly used to steal online banking usernames and passwords. Hundreds of criminal operations around the world use the malware.



It's unknown how many computers are infected with ZeuS, but it's estimated to be in the millions. Cisco said as many as 25 per cent of the world's ZeuS-infected machines were unplugged from the massive "botnet" overnight with the takedown of AS Troyak.



Botnets are networks of infected PCs that behave like criminals' remote-control robots. They steal identities en masse and are used to attack Web sites.



But instead of a slam-dunk victory, the incident wound up highlighting the whiplash pace at which criminals can resurrect their illicit businesses after what should have been a devastating setback.



RSA, the security division of EMC Corp., said dozens of malicious servers that criminals used to spread ZeuS were connected to the Internet by AS Troyak. The service inexplicably went dark Tuesday, severing the ties between criminals and ZeuS-infected machines under their control.



It's not publicly known who pulled the plug. It could have been law enforcement, security researchers, or even the criminals themselves if they decided to move their operations to other servers.



Shutting down malware operations is a constant cat-and-mouse game.



Some services exist solely to host malicious content, and when their connections to the Internet are severed, it's often relatively easy to find another provider willing to sell them a new connection.



RSA researchers wrote in a note to clients that their experience shows that "these kinds of drastic changes are usually short-lived, as in the long run, criminals tend to restructure their criminal activity and relaunch their online attacks."



That apparently happened - and quickly. By Wednesday, researchers said the servers appeared to be back online, through a new Internet provider.



Cisco researchers said a total of 68 command-and-control servers were brought down, but that it's unknown how many infected computers were connected to each of those.



But they added that the criminals may have known the servers were going to be brought down, because traffic to those servers spiked over the weekend, suggesting they were directing infected computers to point to new servers.



One of the most high-profile takedowns of a malicious Web site hosting service involved a company called McColo Corp. whose Internet service was severed in the winter of 2008 after researchers amassed evidence of the company's wrongdoing.



Worldwide spam volumes almost instantly dropped by half, but within days started climbing again.

Voices
Hunted: A stag lies dead on Jura, where David Cameron holidays and has himself stalked deer
voicesThe Scotland I know is becoming a playground for the rich
News
Russell Brand has written a book of political analysis called Revolution
peopleFilm star says he is 'not interested in making money anymore'
Arts and Entertainment
Benedict Cumberbatch has refused to deny his involvement in the upcoming new Star Wars film
filmBenedict Cumberbatch reignites those Star Wars rumours
News
newsMcKamey Manor says 'there is no escape until the tour is completed'
PROMOTED VIDEO
Life and Style
ebooksA superb mix of recipes serving up the freshest of local produce in a delicious range of styles
Life and Style
ebooksFrom the lifespan of a slug to the distance to the Sun: answers to 500 questions from readers
Sport
footballAccording to revelations from Sergio Aguero's new biography
News
people'When I see people who look totally different, it brings me back to that time in my life'
News
news
News
people

Britain First criticised for using actress's memory to draw attention to their 'hate-filled home page'

Life and Style
Meow! ... Again, Kim Kardashian goes for a sexy Halloween costume, wrapping her body with a latex catsuit and high heeled knee boots
fashionFrom Heidi Klum to Kim Kardashian
News
news

Emergency call 'started off dumb, but got pretty serious'

Extras
indybest
News
i100
Arts and Entertainment
JK Rowling is releasing a new Harry Potter story about Dolores Umbridge
booksChristmas comes early for wizard fans
Arts and Entertainment
filmsOculus Rift offers breathtakingly realistic simulation of zero gravity
Life and Style
tech

Latest stories from i100
Have you tried new the Independent Digital Edition apps?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

ES Rentals

    iJobs Job Widget
    iJobs Gadgets & Tech

    Business Analyst - Surrey - Permanent - Up to £50k DOE

    £40000 - £50000 Per Annum Excellent benefits: Clearwater People Solutions Ltd:...

    ***ASP.NET Developer - Cheshire - £35k - Permanent***

    £30000 - £35000 Per Annum Excellent benefits: Clearwater People Solutions Ltd:...

    ***Solutions Architect*** - Brighton - £40k - Permanent

    £35000 - £40000 Per Annum Excellent benefits: Clearwater People Solutions Ltd:...

    Senior Software Engineer - C#, VB.Net, ASP.Net - Kingston, Sur

    £50000 - £60000 per annum: Ashdown Group: Senior Software Engineer - C#, VB.N...

    Day In a Page

    Wilko Johnson, now the bad news: musician splits with manager after police investigate assault claims

    Wilko Johnson, now the bad news

    Former Dr Feelgood splits with manager after police investigate assault claims
    Mark Udall: The Democrat Senator with a fight on his hands ahead of the US midterm elections

    Mark Udall: The Democrat Senator with a fight on his hands

    The Senator for Colorado is for gay rights, for abortion rights – and in the Republicans’ sights as they threaten to take control of the Senate next month
    New discoveries show more contact between far-flung prehistoric humans than had been thought

    New discoveries show more contact between far-flung prehistoric humans than had been thought

    Evidence found of contact between Easter Islanders and South America
    Cerys Matthews reveals how her uncle taped 150 interviews for a biography of Dylan Thomas

    Cerys Matthews on Dylan Thomas

    The singer reveals how her uncle taped 150 interviews for a biography of the famous Welsh poet
    DIY is not fun and we've finally realised this as a nation

    Homebase closures: 'DIY is not fun'

    Homebase has announced the closure of one in four of its stores. Nick Harding, who never did know his awl from his elbow, is glad to see the back of DIY
    The Battle of the Five Armies: Air New Zealand releases new Hobbit-inspired in-flight video

    Air New Zealand's wizard in-flight video

    The airline has released a new Hobbit-inspired clip dubbed "The most epic safety video ever made"
    Pumpkin spice is the flavour of the month - but can you stomach the sweetness?

    Pumpkin spice is the flavour of the month

    The combination of cinnamon, clove, nutmeg (and no actual pumpkin), now flavours everything from lattes to cream cheese in the US
    11 best sonic skincare brushes

    11 best sonic skincare brushes

    Forget the flannel - take skincare to the next level by using your favourite cleanser with a sonic facial brush
    Paul Scholes column: I'm not worried about Manchester United's defence - Chelsea test can be the making of Phil Jones and Marcos Rojo

    Paul Scholes column

    I'm not worried about Manchester United's defence - Chelsea test can be the making of Jones and Rojo
    Frank Warren: Boxing has its problems but in all my time I've never seen a crooked fight

    Frank Warren: Boxing has its problems but in all my time I've never seen a crooked fight

    While other sports are stalked by corruption, we are an easy target for the critics
    Jamie Roberts exclusive interview: 'I'm a man of my word – I'll stay in Paris'

    Jamie Roberts: 'I'm a man of my word – I'll stay in Paris'

    Wales centre says he’s not coming home but is looking to establish himself at Racing Métro
    How could three tourists have been battered within an inch of their lives by a burglar in a plush London hotel?

    A crime that reveals London's dark heart

    How could three tourists have been battered within an inch of their lives by a burglar in a plush London hotel?
    Meet 'Porridge' and 'Vampire': Chinese state TV is offering advice for citizens picking a Western moniker

    Lost in translation: Western monikers

    Chinese state TV is offering advice for citizens picking a Western moniker. Simon Usborne, who met a 'Porridge' and a 'Vampire' while in China, can see the problem
    Handy hacks that make life easier: New book reveals how to rid your inbox of spam, protect your passwords and amplify your iPhone

    Handy hacks that make life easier

    New book reveals how to rid your email inbox of spam, protect your passwords and amplify your iPhone with a loo-roll
    KidZania lets children try their hands at being a firefighter, doctor or factory worker for the day

    KidZania: It's a small world

    The new 'educational entertainment experience' in London's Shepherd's Bush will allow children to try out the jobs that are usually undertaken by adults, including firefighter, doctor or factory worker