Trend Micro Facebook TrendLabs Twitter Malware Blog RSS Feed You Tube - Trend Micro
Search our blog:

  • Mobile Vulnerabilities

  • Zero-Day Alerts

  • Recent Posts

  • Calendar

    September 2015
    S M T W T F S
    « Aug    
  • Email Subscription

  • About Us

    The Storm botnet may have inspired a following.

    TrendLabs recently came across a HTTP botnet which sends spam, and sends a report card of its spamming success as well. Compared to Storm, the botnet — which has been dubbed the “Mayday” botnet — has a smaller sized network of compromised systems, but this could be due to the fact that it is new.

    The botnet shows signs of using a P2P-like system for some of its routines, similar to Storm, and connects to certain servers periodically to get commands. It also drops a file which Trend Micro detects as WORM_MYTOB.TJ.

    The botnet seems to be coming from the domain http://{BLOCKED}, which TrendLabs speculate to be a compromised site.

    With routines stealthier than Storm, this new botnet may easily outgrow Storm if left untreated. It may even become more powerful than Storm, given the fact that it primarily tries to infect the machines of large businesses.

    Should Mayday’s authors decide to use the botnet for one common purpose, it could render damage more than Storm ever will. Mayday’s may be just waiting for the right time to wreak havoc, in true botnet fashion.

    Share this article
    Get the latest on malware protection from TrendLabs
    Email this story to a friend   Technorati   NewsVine   MySpace   Google   Live   StumbleUpon

    Comments are closed.


    © Copyright 2013 Trend Micro Inc. All rights reserved. Legal Notice