AOH :: IS1085.HTM

Zombie network explosion

Zombie network explosion
Zombie network explosion 

By John Leyden
The Register
2nd September 2008

The number of compromised zombie PCs in botnet networks has quadrupled 
over the last three months, according to figures from the Shadowserver 

Shadowserver tracks botnet activity and the number of command and 
control servers. It uses a variety of metrics to slice and dice its 
figures based in part on the entropy of botnet infections. The clear 
trend within these figures is upwards, with a rise in botnet numbers of 
100,000 to 400,000 (if 30 day entropy is factored into equations) or 
from 20,000 to 60,000 (for five day entropy).

Entropy of botnets is calculated on the basis that if no activity is 
seen from a specific IP for a number of days - either 30, 10 or five - 
then it is removed from the botnet count.

Shadowserver figures suggest the number of command and control servers 
has actually decreased over the last month, following a spike in 
activity back in July.


Register now for HITBSecConf2008 - Malaysia! With 
a new triple-track conference featuring 4 keynote 
speakers and over 35 international experts, this 
is the largest network security event in Asia and 
the Middle East! 

Site design & layout copyright © 1986-2014 CodeGods