All the latest UK technology news, reviews and analysis


Honeybot project helps researchers wipeout Facebook and Twitter botnets

26 Jul 2012
Faecbook website frontpage

A group of security researchers have developed an automated "honeybot" system for protecting against the use of social botnets, such as the infamous Koobface, an increasingly popular strategy for spreading malware and spam via Facebook and Twitter.

A team of computer scientists from the University of Illinois at Urbana-Champaign and the University of Washington have created a system called Sodexo, which aims to study social botnets from the inside and works out how to take them down

Social botnets are created via infected user’s device and compromise their social networking accounts. The compromised account is then used to send spam messages to the user’s contacts, containing links to websites with the executable malware.

To sneak into the social botnet, Sodexo creates fake accounts and farms out a series of friend requests, until it achieves a critical mass.

It then simply watches its social network on the look out for links to follow – once it finds one linking to unblocked malware, it can simply follow it and become part of the social botnet.

This honeypot then goes in to exploitation mode, where it attempts to glean as much information as possible about the workings of the botnet.

Sodexo uses a combination of data mining and machine learning techniques to infer the structure of the botnet and identify command and control channels.

It can also help detect signatures for malware and spam, to improve the efficacy of intrusion detection systems and spam filters and even alert users.

According to the team's research paper, Sodexo was able to learn enough about social botnets to be able to restrict their lifespan to a mere five days, helping wipe out botnet populations on the systems they studied.

“Deploying deception through honeybots significantly reduces the botnet population, even when the number of honeybots is small relative to the population size,” they concluded.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
More on Social Networking
What do you think?
blog comments powered by Disqus
Poll

Windows 7 end of mainstream support

What are your plans for when Microsoft ends mainstream support for Windows 7 in January 2015?
10%
8%
3%
65%
14%

Popular Threads

Powered by Disqus
LG G3 in gold black and white

LG G3 vs Galaxy S5 video

We pit the two Korean firms' flagship smartphones against each other

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

Project Manager

Project Manager - Hull A world leading design and...

Web Developer - C#/VB.Net, ASP.NET, HTML, XML, CSS, Javscript, JQuery,

Web Developer - C#/VB.Net, ASP.NET, HTML, XML, CSS, Javscript...

Cognos TM1 Lead Developer

Cognos TM1 Lead Developer East Midlands £50,000 Plus...

PACS Manager

NHS- RIS/PACS Manager - 6 months - Excellent Rates...
To send to more than one email address, simply separate each address with a comma.