Google Tech Talk September 10, 2009 ABSTRACT Presented by Richard A. Kemmerer. Botnets, which are networks of malware-infected machines that are controlled by an adversary, are the root cause of a large number of security threats on the Internet. A particularly sophisticated and insidious type of bot is Torpig, which is a malware program that is designed to harvest sensitive information (such as bank account and credit card data) from its victims. In this talk, we report on our efforts to take control of the Torpig botnet for ten days. Over this period, we observed more than 180 thousand infections and recorded more than 70 GB of data that the bots collected. While botnets have been hijacked before, the Torpig botnet exhibits certain properties that make the analysis of the data particularly interesting. First, it is possible (with reasonable accuracy) to identify unique bot infections and relate that number to the more than 1.2 million IP addresses that contacted our command and control server during the ten day period. This shows that botnet estimates that are based on IP addresses are likely to report inflated numbers. Second, the Torpig botnet is large, targets a variety of applications, and gathers a rich and diverse set of information from the infected victims. This allowed us to perform interesting data analysis that goes well beyond simply counting the number of stolen credit cards. In this talk we will discuss the analysis that we performed on the data collected …
How to Steal a Botnet and What Can Happen When You Do
July 7, 2010 By
torpig, torpig.
Does what ever a torpig does.
LOL
I steal ppls bots day n night’ yo.
Nice small video u got there lol
maybe we should go back in time and kill the guy that invented the virus
The porn sites
Innocent victims.
onto the legitimate sites
ROFL!!
I would be interested to hear the statistics regarding OS version / browser type that were gathered from this experiment?
None are Apple.
@justinaurelius Inside knowledge?….
)
or just Blind FanBoy Faith
Seriously though, the weak password, poor maintenance type user, easily caught by this sort of crap, is bound to bias the stats towards Windows/IE but it would be interesting to know if there were any Linux or Apple bots.
I’ve doen research, there was one recent attempt at getting a trojan onto an Apple – via a pirated version of Photoshop.
Beyond that – nothing.
As for fanboy – there are more obnoxious ‘dozer fanbois than Apple. Nothing will beat ‘nix when it comes to security.
just a little video
very interesting talk, thanks
Botnets are a little to INSANE, I steer the fuck clear of those..
Very nice stuff.
I know the guy who got the “Main computer”
It’s lots of computers millions locked up on it
Very informative
Very informative, you must’ve been nervous as hell before giving this speech lol
hmmcant seem to find a man who ill treat me like a princess
Wow. These fucking coders are damn good. Hahaha. Wow! That bot must have taken forever to build!
the bin size must of been over 9000
the same people that fight it build it. believe that
nice. but it’s funny that google doesn’t offer their speakers the option to use a remote slide advancer.
big and bob
@ESX888 there’s an app for that, but they wont use it.
your videos are very long but pretty informative i like them =)