Related Links

Related Stories

  • Spam and botnet infections are soaring, warns MessageLabs
    The October intelligence report from MessageLabs suggests that internet users should get ready for a Season's Greetings of another type, as hackers and spammers prepare for the holiday season along with the rest of the population.
  • Zeus botnet traced to Latvian operation
    Researchers have been busy over the last few days tracing where the Zeus botnet is being controlled from, following investigations by the University of Alabama in the US, which tracked down the Zeus Bot virus to a raft of fake internet postcards circulating on the internet.
  • PC infections on the rise due to botnets
    Research from IT security vendor McAfee suggests that PC infections are on the rise once again, largely as a result of botnet operators rebuilding their swarms of infected machines in the wake of the recent McColo ISP shutdown.
  • Finjan uncovers one of world's largest botnets
    Finjan has uncovered what appears to be one of the largest bot networks controlled by a single cybercrime gang, with 1.9 million infected zombie computers forming the swarm.

Top 5 Stories


Amazon cloud resource tapped for botnet command and control service

11 December 2009

A subscriber to the Amazon pay-as-you-use EC2 cloud computing has had their website hacked, and a command and control (C&C) system installed for the Zeus botnet, which continues to be a problem for PC users, despite the worm being almost two and a half years old.

According to a security posting by Computer Associates (CA), which spotted the botnet C&C service running on the Amazon cloud earlier this week, this is the first time that a cloud infrastructure has been misused in this way.

Back in August of this year, Infosecurity noted that the Twitter social networking service was found to be acting as a C&C server, but this latest botnet C&C installation marks a seachange in the way hackers are exploiting web 2.0 and allied services .

According to CA, the hackers appear to have cracked a website operated by a company that hosts on the Amazon cloud servers and then secretly installing their C&C server software.

Peter Wood, chief of operations at First Base Technologies, the penetration testing company, told Infosecurity that he views this hacker development as very serious.

"It represents another step in the development of criminal hacking techniques. The problem is that we are now likely to see similar hacks on cloud computing taking place, now that hackers know that this technique can be used successfully", he said.

This article is featured in:
Application Security  •  Malware and Hardware Security


Comment on this article

You must be registered and logged in to leave a comment about this article.

We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies. ×