SPAM botnet of 4000 enslaved Linux machines shutdown

By John Atienza on April 26, 2016

Source:http://arstechnica.com/security/2016/04/researchers-help-shut-down-spam-botnet-that-enslaved-4000-linux-machines/?mid=1&utm_source=hs_email&utm_medium=email&utm_content=28257582&_hsenc=p2ANqtz-8HKAnYiCMpC9HCC70Ox8V4tH-bs00F8xyRWV2JfCjzVJVYml2otDlhPQK0sngo_Ng98ynI0pH_t6WsEJuY2vLsYeRxvg&_hsmi=28257582#cid=890703

Mumblehard is the name of the large botnet that blasted spam all over the internet for over a year. The botnet used Perl-based coding to give them a backdoor to the victim’s computers. They also used a mail daemon to send large volumes of spam. The C&C servers of the botnet even allowed the attackers to remove themselves from vendor Spamhaus’s blocking list. Security research group ESET worked along Estonian law enforcement  and an industry partner to shutdown the botnet. They did this by tracking down the C&C server, and then they tricked the botnet members into connecting to benign computers. They believe that the initial infection was done by exploiting WordPress’s content management systems or plugins.