Waledac botnet 'decimated' by Microsoft actions

Written by James Delahunty @ 17 Mar 2010 12:43 User comments (8)

Research is showing that action taken by Microsoft and others to tackle the Waledac botnet have been effective. Microsoft's "Operation b49" employed a number of technical measures coupled with court actions to cut off the controllers of the spam-spewing botnet from the 70,000 - 90,000 infected PCs.

"While it is still too early to know the entire scope of this particular takedown's impact, early returns show that Operation b49 has been delivering on the disruption of Waledac and helping to map new territory in the fight against botnets," Microsoft's Jeff Williams said.

He said that data from Microsoft and other security researchers "indicate that our actions have effectively decimated communications within the Waledac bot network." An analysis by the Shadowserver Foundation of honeypot PCs (machines allowed to be infected by researchers to observe their behavior) showed that commands received by the infected machines plummeted.

Additionally, the "honeypot" machines are no longer spewing spam. A firm called Sudosecure has also witnessed a sharp decline in the number of new IP addresses joining the Waledac network.

Waledac is responsible for millions upon millions of spam messages being spread across the Internet. Between December 3 and December 21, Hotmail caught 651 million spam e-mails from the Waledac network destined for users' accounts.

<Internet Explorer 9 embracing HTML 5, GPU acceleration >Five fails to secure Freeview HD bandwidth

117.3.2010 02:17

cyprusrom

Send private message to this user

AfterDawn Addict

Waledac botnet 'decimated' by Microsoft actions

If it's just been reduced by 10%, I guess M$ wasn't that successful:)

This message has been edited since its posting. Latest edit was made on 17 Mar 2010 @ 2:17

217.3.2010 11:39

Josipher

Send private message to this user

Member

why the hell does that make u happy?

317.3.2010 11:42

cyprusrom

Send private message to this user

AfterDawn Addict

Originally posted by Josipher:
why the hell does that make u happy?

Makes who happy?:)

417.3.2010 16:14

scum101

Inactive

they wouldn't suffer ANY of this if they allowed users to CONTROL their computer instead of keeping secretive backdoor control for their own spyware policy.

M$ wouldn't understand a secure operating system if one crawled up and bit them in the ass.. not because there aren't plenty of examples, but because a secure operating system sets update and access policy square under the control of the system administrator to update or modify at their choice. While M$ still insist on "updates" being force installed by M$ outside and above the authority and decision of the hardware owner then really everybody gets exactly what they deserve.. malware and spyware galore as the script kiddies look at a few security sites and share the botnet and spyware scripts which exploit these glaring holed M$ leave for their own use.

517.3.2010 20:43

llongtheD

Inactive

Although I agree that windows isn't the most secure operationg system by far, a bigger part of it in my opinion has to do with the end user. Alot of people no next to nothing about how to use or secure their computer and don't even bother to try and learn. I think the majority of people that get infected are people just like this.

620.3.2010 19:15

ChappyTTV

Send private message to this user

Member

Originally posted by cyprusrom:
Waledac botnet 'decimated' by Microsoft actions
If it's just been reduced by 10%, I guess M$ wasn't that successful:)

Where did you get this number from?
How do you know what the figure actually is, or is this just another chance to take a pot-shot...without anything to back it up. C'mon dude, if you have anything to show your statement is correct, please post it or don't post made up numbers to make a claim like this.
I'm not attacking you here, but I just don't understand why (if this is the case) you would pick some random number and claim that it's not been a successful fight back?

720.3.2010 19:35

cyprusrom

Send private message to this user

AfterDawn Addict

Originally posted by ChappyTTV:
Originally posted by cyprusrom:
Waledac botnet 'decimated' by Microsoft actions
If it's just been reduced by 10%, I guess M$ wasn't that successful:)
Where did you get this number from?
How do you know what the figure actually is, or is this just another chance to take a pot-shot...without anything to back it up. C'mon dude, if you have anything to show your statement is correct, please post it or don't post made up numbers to make a claim like this.
I'm not attacking you here, but I just don't understand why (if this is the case) you would pick some random number and claim that it's not been a successful fight back?

Friend, chill out!
Sorry I didn't use more smiley faces in my previous post, maybe people would've read between the lines and sensed the sarcasm.
Many obviously don't know the etymology of "decimate". "Deci" means 10, and it comes from Latin. To "Decimate", correctly, literally, means a reduction by 10%. Decimation used to be a practice in Roman army...Out of the group of deserters or cowards, every tenth soldier was punished, so their number was "decimated", or reduced by 10%.
nowadays, almost everybody uses the word incorrectly,giving it the meaning of great destruction, drastically reduction in number. Largely widespread, but just because is popular, it doesn't mean is literally correct.
Next time, I will emphasize more on smiley faces, maybe even use the BB <sarcasm>;</sarcasm> codes in my post.
Yeah, I know the meaning of the article,what the editor meant. I also know the illiteracy is being perpetuated more and more in every book and dictionary, unfortunately.
http://en.wikipedia.org/wiki/Decimation_%28Roman_army%29

820.3.2010 22:00

ChappyTTV

Send private message to this user

Member

Originally posted by cyprusrom:
Originally posted by ChappyTTV:
Originally posted by cyprusrom:
Waledac botnet 'decimated' by Microsoft actions
If it's just been reduced by 10%, I guess M$ wasn't that successful:)
Where did you get this number from?
How do you know what the figure actually is, or is this just another chance to take a pot-shot...without anything to back it up. C'mon dude, if you have anything to show your statement is correct, please post it or don't post made up numbers to make a claim like this.
I'm not attacking you here, but I just don't understand why (if this is the case) you would pick some random number and claim that it's not been a successful fight back?
Friend, chill out!
Sorry I didn't use more smiley faces in my previous post, maybe people would've read between the lines and sensed the sarcasm.
....snip...

Like I said, I wasn't attacking you at all, I don't do that. I was simply very curious at your (seemingly) drawn conclusion, and the subsequent jab at MS for it. Too many times these days we see idiotic posts that just blame MS for every woe people have, including their own diahrrea sometimes it seems..;). The ones who know better (coders, engineers, security engineers or just good "experts") just get tired of it is all.
As for the explanation of the word "Decimate", while appreciated, it's unecessary. It does however show your wit, and the reason for your post...I do understand now what you were trying to convey.
Yes, even winkey smiley faces get lost in translation these days, and sarcasm can easily be missed. For many tho, even the sarcasm they use doesn't hide their prejudice, and it's simply used to throw a backdoor cheap shot. Your obvious intelligence should preclude you from this group, but you also should be able to see what I'm getting at.

And yes, I agree with you TOTALLY regarding the "dumbing down" of our youth, and I think it's a crime. Proper education is key to a healthy society and even here in Canada, where we have national grading levels, speaking or listening to kids these days makes me shake my head in disbelief.

Again, sorry I took your post purely at face value, but sometimes that's what happens in this medium, and you showed class by not coming back with the usual expletive laden flame post.
Dave

This message has been edited since its posting. Latest edit was made on 20 Mar 2010 @ 10:03

	YouTube Premium starts showing ads to subscribers (13 Nov 2024 3:09) For years, YouTube Premium has been marketed as a way to enjoy an ad-free YouTube experience. But apparently, that is no longer the case, as Premium subscribers are now starting to see ads on the platform.
	Android 16 will launch sooner than expected (01 Nov 2024 6:45) Google announced that upcoming Android 16 will break the traditional once-a-year cycle of major Android launches. Next Android is poised to launch in Q2 of 2025, so Android 16 should ship before end of June, 2025.
	Winamp ends its "open source" project that wasn't really open source (20 Oct 2024 11:12) Less than a month after the legendary MP3 player Winamp made its source code public, the company has made a sudden U-turn and removed its code from distribution. 2 user comments
	Winamp released its source code - but didn't go open source (25 Sep 2024 12:38) The source code of Winamp has now been officially released. However, it hasn't become a pure open-source project, as its licensing terms prohibit the creation of new, different versions.
	Does your phone rattle? Here's why it happens (25 Aug 2024 8:30) When you shake your phone and hear a light rattle, clatter, or jingle, it's likely not broken. The culprit is probably the optical image stabilization (OIS) system in your phone's camera, meaning everything is functioning as it should. 2 user comments

	Guide: Phone battery drains quickly - how to fix (iPhone / Android) In this guide, we go through the most typical reasons for rapid battery drain with phones, and look at potential reasons or solutions.
	What happens if you don't update Android? Sometimes it can be tempting to avoid updating to a new Android version. What happens if you decide to delay major updates to the OS?
	Does your phone rattle? Here's why it happens When you shake your phone and hear a light rattle, clatter, or jingle, it's likely not broken. The culprit is probably the optical image stabilization (OIS) system in your phone's camera, meaning everything is functioning as it should. 2 user comments
	What IP rating for dust and water resistance means An IP classification (such as IP68) is given to mobile phones, Bluetooth speakers, and other devices, but what do these classifications mean? 1 user comment
	Guide: Is Your Wi-Fi Sluggish or Slow? Here's How to Fix Do you have problems with you Wi-Fi? Slow connection or is it cutting off constantly? This guide aims to remedy these problems. 1 user comment

Waledac botnet 'decimated' by Microsoft actions

8 user comments

Latest news

Reviews

Guides

News archive

Subscribe

Sections:

Follow us:

	Roborock S8 MaxV Ultra review - obstacle avoidance doesn't work as it should, otherwise almost perfect robot vacuum We put the Roborock S8 MaxV Ultra through a very, very long review process. The $1800 mopping robot vacuum is almost perfect, but its obstacle avoidance was surprisingly bad, considering the price - and compared to its competitors.
	Sharge x OnePlus Pouch review: Beautiful power bank that supports SuperVOOC charging In our review, we take a look at Sharge's power bank that supports OnePlus SuperVOOC quick charging technology as well as standard USB PD charging. It has small design flaws, but despite those, the Pouch is very nice product. 1 user comment
	Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.