All the latest UK technology news, reviews and analysis

Asprox botnet rears its ugly head

by Clement James

21 May 2008

Comment: 1

  • Tweet this
Hacker
The Asprox botnet uses a SQL-injection attack tool to hack websites

A new botnet which specialises in sending out phishing spam has prompted security experts to call for enterprises to review their security protection.

The Asprox botnet uses a SQL-injection attack tool to hack websites and add yet more hijacked PCs to its army.

Further reading

"Asprox is more than just another piece of botnet malware as it's what we call a 'hybrid'," said David Hobson, managing director of Global Secure Systems.

"It uses an SQL-injection attack tool that attacks legitimate websites to add to the overall botnet swarm."

Hobson explained that, while botnets and SQL injection attacks are nothing new, a malware infection that combines the two "darkware" vectors highlights the growing ingenuity of the hacker community.

"Most botnets are perpetrated these days by criminal gangs who are after your company's money. And if they can't get your money, they'll use your computers to damage your reputation. It's a simple as that," he said.

The rapid evolution of multi-vector malware like Asprox means that companies should now look seriously at multi-vendor and/or multi-layered IT security protection, according to Global Secure Systems.

"The days when firms could install a single security system on their IT resources are long gone," said Hobson.

"Companies need to review their IT security system on a regular basis and talk to their reseller about enhancing their systems to deal with the latest threats."

Do you agree?

Add your comment

ASProx

This virus took my site offline for 3 weeks and I had to seek an internet security company to fix my site. It cost me £50 but well worth it after the hastle I have had!! Hope this helps others:

Posted by: John Walker 30 Jul 2008

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

Security threats - password theft

Eight-year Nortel hacking operation again shows enterprise vulnerabilities

Related white papers

Related articles

Related jobs

Today's top stories

Apple OS X Mountain Lion

Top five features of Apple OS X Mountain Lion

Clouds superimposed on a computer keyboard

Red Hat pushes cloud computing interoperability

Toy soldiers on keyboard representing cyber security

Boardroom gears up for cyber war

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

99%

0%

1%

0%

0%

Features

V3 reporter Dan Worth

World-changing CERN experiments highlight humanity’s intrinsic curiosity

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

Dynamics AX/AXAPTA Functional Consultant, 55k! Home working!

My multi- national Partner client has charged me exclusively...

Senior IT Operations Engineer -MCSE, IIS7/7.5, SAN, CDN

Senior IT Operations Engineer -MCSE, IIS7/7.5, SAN, CDN...

Bitlocker Consultant

I have an urgent requirement for short term contract...

User Interface Developer x 1/2 - South West

User Interface Developer x 1/2 - Leading Organisation...

To send to more than one email address, simply separate each address with a comma.