27 Sep 2013
64-bit Windows 8.1 Enterprise (RTM)
Hidden click fraud botnet uncovered
Read more at: Hidden click fraud botnet uncovered | ZDNet
Earlier this month, a major spike in traffic on the anonymizing network Tor called attention to a botnet, named Mevade by researchers. Probably in error, Mevade caused a jump in traffic on Tor of almost 600%.
Mevade is a click fraud botnet, composed of hijacked PCs which send fake clicks through advertising affiliate networks in order to collect commissions.
The Microsoft Malware Protection Center (MMPC) has concluded that Mevade is not, as some supposed, a new family of malware, but a new generation of the what they call Win32/Sefnit, a well-known click fraud botnet that had been presumed inactive since 2011. Turns out Sefnit wasn't inactive, it was just so stealthy that it escaped detection since then. Microsoft isn't the first to tie Mevade and Sefnit; Fox-IT noted the connection weeks ago.
Who's behind it? Trend Micro's TrendLabs ties Mevade to a specific criminal gang operating out of Ukraine and Israel.
|My System Specs || |