Slashdot Mirror

← Back to Stories (view on slashdot.org)

What a Botnet Looks Like

Posted by timothy on from the when-jerks-are-smart dept.

Esther Schindler writes "CSO has an annotated, zoomable map of real botnet topologies showing the interconnections between the compromised computers and the command-and-control systems that direct them. The map is based on work by security researcher David Voreland; it has interactive controls so you can zoom in and explore botnets' inner workings. Hackers use botnets for spamming, DDoS attacks and identity theft. One recent example is the Storm botnet, which may have comprised 1 million or more zombie systems at its peak. As with any networking challenge, there are good (resilient) designs and some not-so-good ones. In some cases the topology may be indicative of a particular botnet's purpose, or of a herder on the run."

15 of 122 comments (clear)

  1. Flash site, very funny. by inTheLoo · · Score: 5, Funny

    To get a good look at a botnet they say, "You need to upgrade your Flash Player". How true!

    --
    No calls now, I'm ...
    1. Re:Flash site, very funny. by Bryansix · · Score: 4, Funny

      They say you can get a good look at a botnet by upgrading your flash player but I'd rather take your word for it.

  2. What a Botnet Looks Like by sm62704 · · Score: 5, Funny

    here's a photo of a botnet. Ok, it's a small botnet but if the botnet was a semi you wouldn't see the computers, now would you?

    --
    mcgrew's razor: Never attribute to stupidity that which can be explained by greedy self-interest
  3. Thanks for posting... by Thelasko · · Score: 3, Funny

    all of the IP addresses. Can I get that in a text format? I want to add them to my hosts file.

    --
    One of our competitors trademarked the term "hypothesis". From now on, we will call them "boneheaded ideas".
    1. Re:Thanks for posting... by apt-get+moo · · Score: 2, Funny

      I heard 192.168.1.1 is among...

      --
      ...."Have you mooed today?"...
  4. Ob. XKCD reference by DrYak · · Score: 5, Funny

    Ok, it's a small botnet Randall Munroe's botnet look like that.
    --
    "Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
  5. Check out the losers by Hoplite3 · · Score: 5, Funny

    There are lots of well constructed stars, where a handful of master nodes control several slaves. Each slave knows two or three masters for redundancy. That's good design, and I expected it.

    But what's hilarious is that there are some ip addresses that are slaves to four or five different botnets. I wonder what the owners of those machines think?

    "Man, the internet sure is slow today!"

    "I need a new computer, this one's all slow."

    "Sweet! Five botnets and counting! I'm part of something! I belong!"

    --
    Use the Firehose to mod down Second Life stories!
  6. Re:Anonymous Coward by Anonymous Coward · · Score: 5, Funny

    No, it sucks. I zoomed in to close and saw my IP!

  7. How it looks like? by gmuslera · · Score: 2, Funny

    There are fields, Neo. Endless fields where bot beings are no longer born. Are grown. For the longest time I wouldn't believe it and then I saw the fields with my own eyes...

  8. Ha Ha! by Thelasko · · Score: 2, Funny

    One of the nodes backendportal.info is registered to Horatio Nelson!

    --
    One of our competitors trademarked the term "hypothesis". From now on, we will call them "boneheaded ideas".
  9. Re: Better way needed by Red+Flayer · · Score: 2, Funny

    can be shut down by shut down by just shutting down computers that don't have secure computers.
    Gee thanks thanks captain obvious captain obvious for your observe your observations.

    Was it just me, or did anyone else imagine parent as speaking in the voice of max headroom?
    --
    "Trolls they were, but filled with the evil will of their master: a fell race..." -- J.R.R. Tolkien on Olog-hai
  10. 127.0.0.1 by Anonymous Coward · · Score: 4, Funny

    Wait, 127.0.0.1 is in there. That is my IP address!

  11. How does eNom... by Thelasko · · Score: 2, Funny

    allow people to register with information like:
    Registrant Contact:
    elnopic
    elnopic elnopic (elnopic@elnopic.com)
    +1.2435543
    Fax: +1.5555555555
    123 sdhdsa g
    asdf, AD 34215
    US
    Do they not even try to verify this information?

    --
    One of our competitors trademarked the term "hypothesis". From now on, we will call them "boneheaded ideas".
  12. Too many bots! by IBBoard · · Score: 2, Funny

    There must be too many bots - I can't even get it to render! All I get is a white page with no nodes and no links :\

    Either that or they've rendered the botnet on a white background in apple white with light grey lines.

    (i.e. it seems to be Slashdotted ;) )

  13. Hey.... by losethisurl · · Score: 2, Funny

    That looks alot like the map of our network where I am emplo... oh crap...

    --
    Seriously, is it supposed to look like that?