QUOTE
Modern Hydra
The new tricks of spammers and phishers
by
Jürgen Schmidt
This article was originally published in c't 2007, vol 18, p. 76
In Greek mythology, the heads of the Hydra grew back faster than Heracles and Iolaos could hack them off. A similar thing is happening with current botnets and phishing sites, whose malicious servers seem to appear faster than they can be shut down. A new flexible layer of proxy intermediaries - the so-called Fast-Flux network - makes this possible.
Classic botnets use a comparatively simple principle: The infected PCs - the bots or zombies - connect with a central IRC server. From this chat server, their masters then command them to distribute a new spam email, participate in a DDoS attack or deploy updated malware.
More of that article:
http://www.heise-security.co.uk/articles/94800
The new tricks of spammers and phishers
by
Jürgen Schmidt
This article was originally published in c't 2007, vol 18, p. 76
In Greek mythology, the heads of the Hydra grew back faster than Heracles and Iolaos could hack them off. A similar thing is happening with current botnets and phishing sites, whose malicious servers seem to appear faster than they can be shut down. A new flexible layer of proxy intermediaries - the so-called Fast-Flux network - makes this possible.
Classic botnets use a comparatively simple principle: The infected PCs - the bots or zombies - connect with a central IRC server. From this chat server, their masters then command them to distribute a new spam email, participate in a DDoS attack or deploy updated malware.
More of that article:
http://www.heise-security.co.uk/articles/94800