by Staff Writers
San Francisco (AFP) Feb 7, 2013
Software titan Microsoft and computer security giant Symantec said Thursday that they smashed a hacker-infected computer network that was hijacking Internet searches.
A Bamital "botnet" raked in an estimated million dollars annually by routing Internet users to websites that generated revenue with bogus online ad "clicks."
"The Bamital botnet defrauded the entire online advertising platform, which is what allows the Internet and many online services to be free," Microsoft said in a blog post.
"What's most concerning is that these cybercriminals made people go to sites that they never intended to go and took control of the computer away from its owner."
Along with generating fraudulent clicks for which advertisers paid, the hackers sent Internet users to websites that could sneak malicious code onto machines or steal personal information, according to Microsoft.
Microsoft and Symantec research found that during the past two years, more than eight million computers were attacked by Bamital and that the scheme targeted popular search services and browser programs.
Symantec said it has tracked the botnet since late 2009 and joined forces with Microsoft to shut down the operation.
"Bamital is just one of many botnets that utilize click fraud for monetary gain and to foster other cybercrime activities," Symantec said in a blog post.
"Many of the attackers behind these schemes feel they are low risk as many users are unaware that their computers are being used for these activities."
Bamital is part of a family of malicious software designed to highjack search engine results and route Internet users to hacker-controlled servers, which then re-direct traffic to other websites, according to Symantec.
Bamital has been spread with "drive-by downloads" of malicious code at booby-trapped websites and by infected files downloaded from peer-to-peer sharing networks, Symantec said.
Microsoft and Symantec engineers, armed with a federal court order, went to two US data centers on Wednesday and shut down servers believed to be controlling the Bamital botnet.
"Microsoft and Symantec chose to take action against the Bamital botnet to help protect people and advance cloud security for everyone," Microsoft said.
The companies were notifying people whose machines might be infected with the malicious code and a free "power eraser" tool was available online at norton.com/bamital.
Cyberwar - Internet Security News - Systems and Policy Issues
|The content herein, unless otherwise known to be public domain, are Copyright 1995-2014 - Space Media Network. AFP, UPI and IANS news wire stories are copyright Agence France-Presse, United Press International and Indo-Asia News Service. ESA Portal Reports are copyright European Space Agency. All NASA sourced material is public domain. Additional copyrights may apply in whole or part to other bona fide parties. Advertising does not imply endorsement,agreement or approval of any opinions, statements or information provided by Space Media Network on any Web page published or hosted by Space Media Network. Privacy Statement|