The easy-to-use tools are being created by malicious and criminal hackers to run the networks of compromised home computers they control.

The tools mean hackers can react instantly to what users are doing and re-direct them to fake websites set up to harvest personal data.



This also makes it harder to spot if a PC has been taken over.



The web-based tools put a friendly front end on managing the compromised machines making up so-called botnets.



These networks of hijacked home computers can involve as few as 100 PCs but the biggest can call on thousands of machines.



A botnet is a network of Windows machines that have been compromised by a malicious hacker by exploiting security bugs in Microsoft’s operating system.



Before now the preferred method of controlling botnets has been using Internet Relay Chat via a server that the malicious hacker or criminal owns.



Although the IRC control system remains behind the friendly graphical point-and-click interface, botnet controllers no longer have to issue commands to control their bot herd.



“This makes it a little more friendly and easier to initiate commands,” said Mark Murtagh, technical director at Websense, told the BBC News website.



Instead, botnet owners can issue commands to the machines they control by pointing and clicking. They can even stop machines they control contacting specific websites to prevent them getting updates to close loopholes.



Via these web-based tools the websites visited by unwitting users of compromised machines can be changed moment by moment. Those wanting to do their online banking could be re-directed to fraudulent copies of legitimate sites.



The tools also change the type of traffic passing between controlling server and bot. This makes it harder for firewalls and other security programs to spot and stop communication between the two.



More here.

0