05 Oct 2012

Malnets Responsible for Two-Thirds of Malware Distribution


Malnets or malware delivering networks are responsible for two thirds of malware distribution and cyber-attacks worldwide, according to security company Blue Coat.

Networks of compromised servers infect systems and serve them malware by tricking users into clicking on infected links. The fact that these large networks comprising numerous systems are mostly automated makes them hard to detect and break down.

Blue Coat has released to the public a list of such malnets, with 'Shnakule',' Tricki', 'Rubol', 'Raskat', and 'Rongdac' rated as the largest malicious networks with 1,700 to 5,000 hosts. The company is tracking 1,500 different malnets, approximately three times more than half a year ago.

These nets might be the next generation of botnets. With constantly changing command and control centers they are difficult to track and annihilate. According to Blue Coat, Shnakule changed some 56,000 C&C servers only in 2012. With mobile C&C servers, when one is down, others immediately take its place and the business goes on barely harmed.

"When security companies aggressively pursued the Zeus botnet, malnet operators simply shifted their resources to the Aleuron botnet, developing and using it in attacks," explains Blue Coat for NetworkWorld. Crooks are resourceful and the moment a threat goes down, a lot more are created superior in structure and more difficult to destroy.