RSS Alerts

Share

More services

Related Stories

  • Malware volume increases as Sasfis botnet proliferates
    Data from Fortinet shows malware volumes returning to previous levels over the last few months, with the Sasfis botnet leading the pack.
  • Suspected Mariposa botnet author arrested
    A 23-year-old Slovenian man – thought to be the author and creator of the infamous Mariposa (butterfly) botnet – has been arrested by Slovenian police, working in concert with their colleagues from Spain and a team from the FBI.
  • AVG introduces free web security tool for Mac
    The company, known primarily for its free anti-virus software, has now ventured into a new area of personal computing protection by offering its AVG LinkScanner to Mac users.
  • Taking Down a Botnet
    This past February, Microsoft, along with industry partners and academic researchers, spearheaded an effort to take the Waledec botnet offline. Drew Amorosi provides a detailed account of just how the cooperative endeavor was able to halt – at least temporarily – the notorious spam serving network.
  • US is malicious server leader, says AVG
    The US plays host to the largest number of malicious web servers, according to a study released by anti-malware company AVG.

Top 5 Stories

News

Mumba botnet hits US computers hardest

05 August 2010

Research from anti-virus vendor AVG shows the Mumba botnet maintained by the Avalanche group is affecting more than 55 000 machines, with computers in the US being most frequently infected.

A recent white paper from AVG gives a comprehensive rundown on what it has dubbed the Mumba botnet, thought to be controlled by the Avalanche cybercriminal network. Of the 55 000 machines the company claims to have been infected, 33% of them reside in the US, followed by Germany (17%), Spain (7%), and the UK (6%).

Mumba uses four different variations of the Zeus banking trojan according to the security firm, which is primarily used to pilfer banking data. AVG called Avalanche “one of the most sophisticated group[s] of cybercriminals on the internet” for its fast-flux network infrastructure, a mass-production system that deploys fishing sites and crimeware.

AVG says its research has uncovered more than 60 GB of stolen data on the Mumba server, including baking information, card numbers, emails, and account login info.

Tracking the Mumba botnet since its release, AVG says its first infection campaign began at the end of April with 35 000 compromised machines and has gradually increased to a total of 55 000 since.

This article is featured in:
Internet and Network Security • IT Forensics • Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012