In the past, a Bonet Master used to control his zombie's PC's (think remote control attackers) via Internet Relay Chat (IRC) which is a popular chat application.
The problem with that is it was fairly easy to infiltrate the chat room and see what the "master" was doing and the commands he/she was sending to the controlled nodes.
Now it appears the masters have gotten smarter and started using a peer-to-peer mechanism hidden inside the Tor network. This makes the communications channel encrypted and very difficult to track by way of session randomization.
Very interesting.
http://blog.gdatasoftware.com/blog/article/botnet-command-server-hidden-in-tor.html
Tor Project - https://www.torproject.org/
No comments:
Post a Comment