(The Hosting News) – A massive botnet has been discovered by a researcher at Kaspersky lab. Named TDL-4, the botnet is said to have already affected nearly four and a half millions computers.
On Securelist.com, Kaspersky writes, “The malware detected by Kaspersky Anti-Virus as TDSS is the most sophisticated threat today. TDSS uses a range of methods to evade signature, heuristic, and proactive detection, and uses encryption to facilitate communication between its bots and the botnet command and control center.”
The first version of TDL appeared in 2008. However, the latest version of TDL is said to be the most advanced and has a “powerful rootkit component.” Securelist states that this “allows it to conceal the presence of any other types of malware in the system.”
Another feature that makes TDL so dangerous is that it contains a component that acts as its own antivirus, thus making it secure from other malicious software.
Botnet viruses load onto multiple computer systems, thus creating networks of infected computers. The botnet’s operators can then access the infected systems remotely. Botnets give the operators the ability to use the compromised systems to steal data, launch attacks on other systems, spread spam, and conduct other malicious actions.
Most recently in April, federal investigators in the United States worked to end a botnet known as Coreflood. Coreflood is thought to have existed for nearly 10 years, infecting around 2 million personal computers. While it’s unknown how much victims of Coreflood lost, some analysts believe that the bot’s operators could have stolen money that amounted in the hundreds of thousands.
You can view Securelist’s entire post on the matter here: http://www.securelist.com/en/analysis/204792180/TDL4_Top_Bot