Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Microsoft, the FBI, Europol disrupt the notorious ZeroAccess botnet


07 Dec 2013   #1

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
 
 
Microsoft, the FBI, Europol disrupt the notorious ZeroAccess botnet

Quote:
The Microsoft Digital Crimes Unit today announced it has successfully disrupted a rampant botnet in collaboration with Europol’s European Cybercrime Centre (EC3), the Federal Bureau of Investigation (FBI) and leaders in the technology industry, including A10 Networks Inc. The Sirefef botnet, also known as ZeroAccess, is responsible for infecting more than 2 million computers, specifically targeting search results on Google, Bing and Yahoo search engines, and is estimated to cost online advertisers $2.7 million each month. Today’s action is expected to significantly disrupt the botnet’s operation, increasing the cost and risk for cybercriminals to continue doing business and preventing victims’ computers from committing fraudulent schemes.
Source

A Guy

My System SpecsSystem Spec
.

08 Dec 2013   #2

Windows 7 Pro. 64/SP-1
 
 

From the source posted.
------------------
Due to its botnet architecture, ZeroAccess is one of the most robust and durable botnets in operation today and was built to be resilient to disruption efforts, relying on a peer-to-peer infrastructure that allows cybercriminals to remotely control the botnet from tens of thousands of different computers.
-------------------

Good old peer-to-peer (P2P) coming to help the criminals.
My System SpecsSystem Spec
08 Dec 2013   #3

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
 
 

Quote:
Update, Dec. 6, 1:36 p.m. ET: According to Stone-Gross, the operators of ZeroAccess botnet last night pushed out a configuration file for distribution to the 2 million systems still infected with the bot malware. The new “z00clicker” template uploaded by the badguys temporarily brought the click fraud network back online, Stone-Gross said, but by this morning the servers were down again. “The ZeroAccess guys then pushed new configuration files/plugins with the message ‘WHITE FLAG’,” perhaps signalling that for now they do not plan to try to resuscitate the click fraud network.

Separately, Lance James, head of intelligence at Deloitte, confirmed that the new Z00clicker modules were uploaded shortly after Microsoft and Europol announced their action.
Source

A Guy
My System SpecsSystem Spec
.


08 Dec 2013   #4

Windows 7 Pro. 64/SP-1
 
 

Bill let me know if I'm thinking up the wrong tree.
It seem to me as long as computers are getting infected use P2P and Torrents this click defraud thing will last forever.
My System SpecsSystem Spec
08 Dec 2013   #5

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
 
 

The problem is, there are a lot of PCs out there infected, and more that are easily infected. Usually these people have no clue their PC is a bot, and being used to spam, etc. The malware writers are motivated, they aren't just causing problems, they are making good money. It is their only job, and they are very good to boot. As long as they have avenues to communicate with their botnet (certainly P2P, Tor, and other less well known) then if the communication is disrupted, they just build a different road, and on they go.

The best the good guys can hope for is to continuously disrupt the communications. MS then also has the ability to try and clean the infected PCs via the Malicious Software Removal Tool each month.

Basically, your statement is 100% correct. there will be no stopping it unless more draconian methods are used, which imperils our privacy as well.

A Guy
My System SpecsSystem Spec
Reply

 Microsoft, the FBI, Europol disrupt the notorious ZeroAccess botnet




Thread Tools



Similar help and support threads for2: Microsoft, the FBI, Europol disrupt the notorious ZeroAccess botnet
Thread Forum
Microsoft helps disrupt massive financial cybercrime ring Security News
Microsoft, Symantec shutter another botnet Security News
Researchers question Microsoft's botnet take-down. News
Microsoft Takes Down the Waledac Botnet. Security News

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 11:15 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33