Famous botnets
At this point, it is important to mention a few notorious botnets that are still tough to detect.
Conficker: 2riJinally WhouJhW Wo EH a virus, ConfiFNHr had built-in software routines that could allow the infected machine to be controlled remotely, making it a bot threat. While it was wriWWHn Ior Windows 2S, a IHw varianWs wHrH laWHr FrHaWHd Wo inIHFW U1,X and Linux sysWHms Woo. ,W usHd WhH hiddHn filH sharH vulnerability of Windows to get into the machine, and then turn it into a zombie to spread the infection further. With an infection FounW oI ovHr 10 million maFhinHs aFross WhH JloEH, ConfiFNHr is sWill Iound in sysWHms WhaW arH impropHrly FonfiJurHd, or noW protected by a strong perimeter defence system.
Mariposa: This botnet used spyware and malware as a vehicle to inject machines and install a payload of ‘command and control centre’ modules. The purpose of 0ariposa was Wo run in sWHalWh modH, and NHHp an HyH on passwords and credit card numbers being typed on the machine. It was also programmed to intercept browser requests and lure users to pages hosting updated copies of the botnet itself, as well as advertisement pages.
Srizbi: This EoWnHW was spHFifiFally dHsiJnHd Wo FrHaWH billions of spam email messages every day. It spread mainly via pirated and free software downloaded on the Net, turning multiple machines into zombies. It had a very small footprint, whiFh madH dHWHFWion vHry diIfiFulW. ,W had a diIIHrHnW FonWrol