Splash One Bandit

Jul 23, 2012 - Ojas Sarup

Though one of many, the Grum botnet had, on an average, over 1,20,000 active infected IP addresses sending spam to multiple targets every day.

The FireEye Malware Intelligence Lab reported recently that it had, in conjunction with Russian firms CERT and Spamhaus, taken down command and control (C&C) centres in Russia and Ukraine (following similar take-downs in the Netherlands and Panama) to completely eliminate the botnet.
In case you’re wondering what a botnet is, here’s the basic idea. Malicious software is installed in various machines around the world. This software grants control over the infected machine to a remote server, called a C&C centre. In the case of the Grum botnet, the various C&C centres used to instruct the infected clients to send spam emails across the globe.
Since it’s the third largest spam in the world, taking down the Grum botnet is definitely a good thing.
A senior staff scientist involved in the take down, Atif Mushtaq, said, “According to data coming from Spamhaus, on an average, they used to see around 1,20,000 Grum IP addresses sending spam each day, but after the takedown, this number has reduced to 21,505. I hope that once the spam templates expire, the rest of the spam will fade away as well.”
FireEye also noted a decline in Lethic’s (world’s largest botnet) activity as a result of the takedown. Mushtaq added that we should “keep on dreaming of a junk-free inbox”, and I hope that dream is realised soon!

Post new comment

<form action="/comment/reply/174008" accept-charset="UTF-8" method="post" id="comment-form"> <div><div class="form-item" id="edit-name-wrapper"> <label for="edit-name">Your name: <span class="form-required" title="This field is required.">*</span></label> <input type="text" maxlength="60" name="name" id="edit-name" size="30" value="Reader" class="form-text required" /> </div> <div class="form-item" id="edit-mail-wrapper"> <label for="edit-mail">E-Mail Address: <span class="form-required" title="This field is required.">*</span></label> <input type="text" maxlength="64" name="mail" id="edit-mail" size="30" value="" class="form-text required" /> <div class="description">The content of this field is kept private and will not be shown publicly.</div> </div> <div class="form-item" id="edit-comment-wrapper"> <label for="edit-comment">Comment: <span class="form-required" title="This field is required.">*</span></label> <textarea cols="60" rows="15" name="comment" id="edit-comment" class="form-textarea resizable required"></textarea> </div> <fieldset class=" collapsible collapsed"><legend>Input format</legend><div class="form-item" id="edit-format-1-wrapper"> <label class="option" for="edit-format-1"><input type="radio" id="edit-format-1" name="format" value="1" class="form-radio" /> Filtered HTML</label> <div class="description"><ul class="tips"><li>Web page addresses and e-mail addresses turn into links automatically.</li><li>Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd></li><li>Lines and paragraphs break automatically.</li></ul></div> </div> <div class="form-item" id="edit-format-2-wrapper"> <label class="option" for="edit-format-2"><input type="radio" id="edit-format-2" name="format" value="2" checked="checked" class="form-radio" /> Full HTML</label> <div class="description"><ul class="tips"><li>Web page addresses and e-mail addresses turn into links automatically.</li><li>Lines and paragraphs break automatically.</li></ul></div> </div> </fieldset> <input type="hidden" name="form_build_id" id="form-2500a2e193552008c0b72d9d20ea5533" value="form-2500a2e193552008c0b72d9d20ea5533" /> <input type="hidden" name="form_id" id="edit-comment-form" value="comment_form" /> <fieldset class="captcha"><legend>CAPTCHA</legend><div class="description">This question is for testing whether you are a human visitor and to prevent automated spam submissions.</div><input type="hidden" name="captcha_sid" id="edit-captcha-sid" value="87985985" /> <input type="hidden" name="captcha_response" id="edit-captcha-response" value="NLPCaptcha" /> <div class="form-item"> <div id="nlpcaptcha_ajax_api_container"><script type="text/javascript"> var NLPOptions = {key:'c4823cf77a2526b0fba265e2af75c1b5'};</script><script type="text/javascript" src="http://call.nlpcaptcha.in/js/captcha.js" ></script></div> </div> </fieldset> <span class="btn-left"><span class="btn-right"><input type="submit" name="op" id="edit-submit" value="Save" class="form-submit" /></span></span> </div></form>