Storm Worm Update: I Hate To Say I Told You So…

8 10 2007

Anyone remember this article I wrote back in July:  STORM WORM: LARGEST ATTACK IN TWO YEARS, BUT WHY?
Well, it looks like I was correct in being concerned that the Storm Worm and its resulting botnets could become even more of a problem even though the code was so old.  Now this nasty little trojan has a bran new bag:

Storm Worm Descends on Blogspot
It seems like spammers, scammers, phishers and now malware authors are starting to leverage blogs more and more, especially Blogger/Blogspot as Google tend to be quite slow in responding and sometimes don’t respond at all.

This makes it an ideal platform for dodgy behaviour as the crooks have adequate lead time to con/infect people before they get shut down.

In this case Blogspot was used as the platform to propagate malcious messages by the Storm worm, people clicking these messages were liable to infection.

Source – Darknet – The Darkside

Notice what I underlined there.  Darknet sees a growing threat from Splogs.  I see that threat mixed with Storm Worm, and I say, “I knew Storm Worm would only become a larger problem”.  I still don’t know why though, beyond the basic malicious crap people do.

There are probably millions of undetectable variants of the Storm Worm trojan.  I am sure that the growing power of the extremely slippery botnets, that Storm Worm is used to create, will eventually do something very big and very naughty.  I don’t know how or why or what will happen, but if unchecked, something really BIG is going to come crashing down on some rather large target, maybe even a government.

I know it seems like I keep saying “THE SKY IS FALLING”, but I’m not.  I am only saying that there is the potential for “the sky to fall” if security companies and professionals don’t create a fool proof definition to stop all the Storm Worm variants and the botnets it creates.

Just in case you were wondering; No, I do not have the knowledge to create this “fool proof definition”, nor do I know how much work or how possible it could be.

Keep your eye’s open, and don’t click on random crap.


Actions

Information

7 responses

9 11 2007
What is Storm?

Amazing that Storm is so sophisticated. Not only does it parse browsers, but also browser versions. I can only imagine what’s next. I’m only glad that myself and my family have moved to Ubuntu. Although we still have to deal with the Spam from Storm, we do not worry about infections.

Although much of Storm’s machines are in fact outside the US, over half are inside the US. So simply blocking traffic from, say, China, won’t be very effective. That’s the power of a distributed botnet.

2 02 2008
8 06 2011
lipladycarol
12 06 2011
lipladycarol
14 09 2011
juliatruman46

Hi there all. I’m from Southall in Great Britan. themostboringblogintheworld.wordpress.com looks like a terrific website and I’m looking forward to chatting to a couple of the users on here. Have a great day.

10 02 2012
nurequonolo

They basically adore these timepieces and nearly all of them arrive back to us for a lot more and more.

29 03 2012
oqybwzzk

Hi, I like this site. Credit you recompense tips. I organize these tips rather helpful. But I got another question: where to obtain pure and shoddy schemer products?

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s




%d bloggers like this: