Security Advisor

Grum Botnet Powers Down, But Not Out

Look for this botnet right to be back at operational capacity sometime soon.

This news is a somewhat of a mixed bag.

On the positive side, the third-largest botnet ring in the world has been crippled after its major C&C servers were taken offline. Authorities were even able to stop new C&C servers from fully powering up in Ukraine after the botnet punks fled due to the raids.

On the negative side, security experts believe that this ring of spam email could be back up and running at any time, especially since none of the individuals responsible were picked up during the shutdown operation.

It's like seizing the slim jim and having the car thief get away. 

In fact, they've tried to revive it again this week, just to be  once again smacked down. While I commend the authorities' decisive actions the second they see these guys poking their heads out, the fact is that without physically detaining those running the operation, expect attempt after attempt to occur until they find success.

For a botnet ring that is estimated to have swindled millions of unearned dollars with Grum, I'm pretty sure the promise of a continual paycheck has supplied these crooks with enough patience and determination to keep on going until they're back up and running.

About the Author

Chris Paoli is the site producer for Redmondmag.com and MCPmag.com.

Featured

  • Exchange Server June Cumulative Updates Arrive, but with Red Tape

    Microsoft released its quarterly cumulative updates (CUs) for Exchange Server 2013, 2016 and 2019 products this week, but added an extra step for IT pros to consider before installing them.

  • Moving an Old VM to a New Hyper-V Host

    So you want to know whether a Hyper-V virtual machine built on a legacy host will be supported by a newer server? There's a PowerShell command for that.

  • AI-Driven Solution Tracks Packets Through the Datacenter

    Datacenter solutions vendor Kaloom this week unveiled a new offering the company says will enable the development of "self-driving" datacenter networks.

  • Microsoft Previews Azure Bastion Service for Private VM Access

    Microsoft on Tuesday announced a preview of the Azure Bastion service, which lets a user connect to an Azure virtual machine (VM) using a private Internet connection.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.