Storm Botnet Ebbing, Says UC San Diego Analyst

  • By Paul McCloskey
  • 11/08/07
An Oct. 20 presentation at the ToorCon hacker conference by Brandon Enright, a computer security researcher at the University of California, San Diego, struck a nerve in the CS community by concluding that the notorious Storm Worm could be losing steam.

"The size of the network has been falling pretty rapidly and pretty consistently," Enright told the conference during his presentation, which was titled, "Exposing Storm."

The Storm worm emerged in January as one of the first pieces of malware to use a P2P network for command and control, Enright said in his presentation, "making it one of the most resilient bots ever." The lack of a centralized command and control has made it highly resistant to countermeasures, he said.

Enright said the extent of the Storm network has been unscientifically reported by media outlets as between 1 million and 50 million bots. "Fortunately, most of these estimates are inaccurate or completely wrong," according to his presentation.

Since July, when a a concerted e-mail attack infected an estimated 1.5 million PCs, Storm has ebbed somewhat.

Enright ascribed this to aggressive work by anti-virus vendors. In particular, Microsoft Corp.'s addition of  Storm detection in September to its Malicious Software Removal Tool put a "measurable dent" in the network, Enright reported.

Read More:

About the Author

Paul McCloskey is contributing editor of Syllabus.

Featured

  • student reading a book with a brain, a protective hand, a computer monitor showing education icons, gears, and leaves

    4 Steps to Responsible AI Implementation

    Researchers at the University of Kansas Center for Innovation, Design & Digital Learning (CIDDL) have published a new framework for the responsible implementation of artificial intelligence at all levels of education.

  • glowing digital brain interacts with an open book, with stacks of books beside it

    Federal Court Rules AI Training with Copyrighted Books Fair Use

    A federal judge ruled this week that artificial intelligence company Anthropic did not violate copyright law when it used copyrighted books to train its Claude chatbot without author consent, but ordered the company to face trial on allegations it used pirated versions of the books.

  • server racks, a human head with a microchip, data pipes, cloud storage, and analytical symbols

    OpenAI, Oracle Expand AI Infrastructure Partnership

    OpenAI and Oracle have announced they will develop an additional 4.5 gigawatts of data center capacity, expanding their artificial intelligence infrastructure partnership as part of the Stargate Project, a joint venture among OpenAI, Oracle, and Japan's SoftBank Group that aims to deploy 10 gigawatts of computing capacity over four years.

  • laptop displaying a phishing email icon inside a browser window on the screen

    Phishing Campaign Targets ED Grant Portal

    Threat researchers at cybersecurity company BforeAI have identified a phishing campaign spoofing the U.S. Department of Education's G5 grant management portal.