Warning, Danger: Botnets!
I've read warnings about my computer getting caught up in a botnet, but I don't really understand the danger. Can you explain in simple terms what a botnet is, how it would affect my computer, and how to avoid them? |
What is a Botnet?
Okay, here's the scoop... a botnet is a collection of ordinary home and office computers that have been compromised by rogue software. The term "botnet" is short for "robot network" and describes the situation rather well. Computers that have been caught up in a botnet have been effectively taken over, and can be used to perform almost any task by the person or persons who control the botnet. Botnets are controlled by criminals and other miscreants whose motives include selling products, operating financial scams and crippling websites through coordinated attacks.
Should you be concerned about botnets? Yes, because botnets operate silently, and your computer may be affected without you ever suspecting it. Botnets are everywhere. It is estimated that over 30 million "zombie" computers are unknowingly caught up in these networks that distribute spam, steal personal information and participate in denial of service attacks. Botnets are carefully planned to spread via viral infections and other malicious software. They use email, social engineering and P2P (peer to peer) technology to spread to other computers. Once your PC is infected, it may attempt to spread the botnet code to others on a local network in a home or office setting.
Botnets are most often used to spew massive quantities of spam, which is where most of the "enhance your body part," offers and phishing scams come from. But since the botnet code runs with full privileges on the infected computer, it can be used to gather sensitive information from businesses, political groups or governments. Sometimes, the attacks are used to damage or take down a competitor's website by flooding it with emails or web connections. These attacks can be hard to defend against, because the attacking computers are spread all over the Internet. And when the "attacker" is identified, it's just some guy in Podunk who let his anti-virus protection expire, and had no idea his computer was involved in a global crime spree.
Bots can also be used as agents for mass identity theft. This happens through phishing emails that appear to be from a legitimate company in order to convince the user to submit personal information and passwords. Be especially wary of emails claiming to be from eBay, Paypal, banks or the government. Never click on email links to access these sites -- always use your bookmark or key it in directly.
How to Avoid Botnets
You are most likely to get sucked into a botnet if you do these things:
- Fail to secure your computer. (See Ten Steps to Securing Your New PC)
- Fail to use a good spam filter.
- Fail to use anti-virus and firewall protection
- Click on dubious links in spam emails or shady websites
Use good security practices outlined in the links above, and avoid suspicious emails, especially unexpected messages with subject tags related to holidays, celebrities or current events. Watch out for phishing scams, never click on (or buy!) anything advertised in a spam email, and when in doubt, just don't click.
Fortunately, in the past two years, law enforcement and computer security companies have had some success in tracking down and neutralizing some of the most notorious botnets. In March 2010, the FBI and authorities in Spain busted the Mariposa botnet (over 12 million computers) and arrested the people behind it. In 2011, Microsoft and Kaspersky combined to neutralize the Rustock and Kelihos botnets, but were unable to identify the overlords. Most recently police in the US and Estonia arrested the people running the Esthost botnet.
How to Detect and Remove Botnet Infections
It's difficult to detect if your computer has been caught up in a botnet. If you notice that your computer is sluggish, that *may* be a sign that you are affected. (For related reading, see Make Windows XP Run Faster.) But in general, if you have been affected by a botnet, you've got some sort of malware infection. Install good anti-virus and anti-spyware software (refer to the links above), and it should detect, take care of, or prevent the problem.
Have you had experience with a botnet on your computer? Post your comments and questions below...
|
|
Share this article with friends! |
|
Posted by Bob Rankin on 28 Feb 2012
| Need More Help? Try the AskBobRankin Updates Newsletter. It's Free! |
 |
Prev Article: Is Google's Privacy Policy Evil? |
The Top Twenty |
Next Article: Geekly Update - 29 February 2012 |
 |
|
Link to this article from your site or blog. Just copy and paste from this box: |
Post your Comments, Questions or Suggestions
Free Tech Support -- Ask Bob Rankin
Subscribe to AskBobRankin Updates: Free Newsletter |
||
|
Copyright © 2005
- Bob Rankin - All Rights Reserved
Privacy Policy -- See my profile on Google. |
||
Article information: AskBobRankin -- Warning, Danger: Botnets! (Posted: 28 Feb 2012)
Source: http://askbobrankin.com/warning_danger_botnets.html
Copyright © 2005 - Bob Rankin - All Rights Reserved
Free
Most recent comments on "Warning, Danger: Botnets!"
Posted by:
Dan
28 Feb 2012
We have a network between 3 offices in the courthouse. Our ISP is just across the street and has told us that one of the offices is sending thousands of emails a day. The ISP could tell which office, but not which computer. All of the offices are slowed down. Is there an easy way to tell which PC it is?
Posted by:
Chas
28 Feb 2012
This site checks for botnets instantly:
http://www.botnetchecker.com/
Posted by:
Julie
28 Feb 2012
How likely are mac computers to be involved in botnets and how can you tell?
Posted by:
Snert
29 Feb 2012
I have my firewall configured to tell me of any thing outgoing. I have to approve what get's sent. Sometimes that's a hassle but if I know what it is, like one of my apps 'phoning home' for an update, I let it go.
If it's something I've never heard of before, I squaush it and run a full system malware scan. There are several free rootkit scanners I use monthly, JIC.