Beware the Kraken!
Supposedly there is a new Botnet out there that is twice the size of the Storm Worm. I’m a bit skeptical at the moment since it was announced at RSA by a company that researches botnets. So you see, the company that announced it has a stake in it being the biggest, baddest around. The name of the bot? The Kraken! Catchy, right?
System Admins are supposed to flee in terror at the approach of the Kraken!
But this botnet has no special properties other than an encrypted payload and a persistent residence on the affected host. And its purpose is nothing spectacular, either. It spams hundreds of thousands of emails, which is a problem that is easily fixed on an enterprise if proper security measures are followed: Allow outbound email from only authorized mail servers and anything left sending email must be a bot zombie.
Sans has more info on it here. The Reg’s take on it is here.
I love that movie.
(I have my priorities.)
I almost went to that conference.