Login, change your address, subscribe to new or manage current magazines or e-newsletter subscriptions
IT World Events
Site Map - Affiliates
ComputerWorldNetwork WorldCIO CanadaCIO Canada Governments' ReviewJobUniverse Canada
Enter your  QUICKLINK number to go directly to that article.
Advanced Search
Knowledge Centres
Content Types
Featured White Papers
Unlock the potential of data with the right data warehouse solutionUnlock the potential of data with the right data warehouse solution
Provided by: IBM
read more
IBM Multiform Master Data Management: The evolution of MDM applicationsIBM Multiform Master Data Management: The evolution of MDM applications
Provided by: IBM
read more
Closing the data privacy gap: Protecting sensitive data in non-production environmentsClosing the data privacy gap: Protecting sensitive data in non-production environments
Provided by: IBM
read more
Yuk it Up
Act to Amend the Copyright Act
Want a copyright law that protects spyware and virus writers? If not, sign our petition to amend Bill C-61
Featured IT Quiz
IT Quiz: Test yourself to see if you have the knowledge to fit into the open source world, and compare yourself with the rest of the respondents
Featured White Papers
This white paper details Intel's current and future energy-saving initiatives to reduce costs and support business goals. Learn how Intel IT is extending its efforts to be a role model enterprise IT organization by supporting the Climate Savers Computing Initiative, which aims to drive a 50 percent reduction in computer-related CO2 emissions worldwide. No registration required.

Page 1 of 6

Seven smart strategies to battle botnets

By: Joaquim P. Menezes - IT World Canada  (06 Jun 2007)

Also read Part I of this series:The botnet menace – and what you can do about it

In the first part of this feature we described what bots are, the incredible damage they can cause, and why they constitute a growing threat to enterprises and consumers alike.

We discussed the reasons for the diminishing effectiveness of technologies such as intrusion detection in identifying and thwarting bots.

We listed some newer techniques being employed by increasingly tech savvy bot masters (or bot herders) to avoid detection – such as use of encrypted IRC communications, HTTP tunneling, and peer-to-peer networking.

In conclusion we emphasized the need of for effective strategies to beat bot herders at their own game.

In this piece we present seven such strategies you can implement immediately to discover, block or repair a bot infection.

Note: In both parts of this series we use the term "bot" to refer to malicious bots - software agents used by a bot herder to take control of a network of computer systems, which can then be used for nefarious purposes - such as sending spam, denial of service attacks, information theft and more. However, bots can also perform useful tasks. An example is their use by Search Engines for Web spidering, where an automated script fetches, analyses and files information from Web servers many times faster than a human being would be able to.

Step 1 – Secure your systems

A computer system usually gets infected with a malicious bot via many of the same channels it falls prey to other malware, Trojans and viruses.

These include vulnerabilities at the network layer, on the operating system, pieces of software that listen on the network level, and infiltrate the system, usually through e-mail links that users click on.

That being the case, experts say the first level of defence in battling bots, involves the same basic steps that are effective against viruses and Trojans – keeping your systems patched, using firewalls, spam filtering software and so on.

As another popular route for a bot attack is Web links transmitted through instant messaging (IM), users should also look at anti-virus and filtering software for IM.

Some companies have disabled IM because of inherent risks associated with it.

However, for firms averse to taking such a step, or for whom IM happens to be a business critical capability, there are commercial applications that enable one to proxy those connections through a channel that has the ability to filter out malicious software.

Page 1 of 6
Send to a Friend  Rate This Page  Print This PageAdd a new comment
Bookmark this article on:
del.icio.us| Digg it| Furl| Google| Technorati| StumbleIt| Yahoo!

Have something to say about this article? Add a new comment

If you find a comment inappropriate, You can notify the moderator by clicking the Report an innapropriate comment icon.
BOTSReply to this commentReport an innapropriate comment
I have always said that if people do what they are supposed to do on their work computers and through only a short training are able to identify e-mails that they should ignore, then there would be far fewer problems. The same really applies at home too for even on a home computer it has always seemed to me that those who experience most problems are the users who do things that they know they shouldn't do. Better education, and really not that much of it, would go a long way in avoiding viruses, trojans and now bots.
Written by: David R. Filbey-Haywood, from Toronto, Ont..
ADD A COMMENT
Name:*Your email address will not appear online and will be used only in the event that the editor wishes to contact you personally for additional comment.
City:
Email:
Title:*
Comment:*
* required fields



Related Content
Articles

Special Advertising Partners
IDC Case Study: Identity And Access Management Buying Criteria.
IDC analyses IAM buying criteria and deployment at Coppin State University. Coppin State replaces "first generation" IAM solution to obtain benefits needed for today's agile enterprise: ease of integration, rapid deployment, simplified compliance, flexibility.
White Papers
Closing the data privacy gap: Protecting sensitive data in non-production environments
How can IT organizations protect sensitive data, including employee and customer information, as well as corporate confidential data and intellectual property? Industry analysts recommend "de-identifying" or masking data as a best practice for protecting privacy. This white paper explains the importance of closing the data privacy gap in non-production environments, and provides guidance on effective data masking. Complimentary with registration. Sponsored by IBM.
Unlock the potential of data with the right data warehouse solution
Once you've made the decision to implement a new data warehouse, you want to make sure you choose the one that's right for your organization. This buyer's guide provides checklists for starting points that you can use when evaluating vendors and their products. Complimentary with registration. Sponsored by IBM.
Prepare for a more efficient SAP implementation: Take data issues off the critical path
This white paper outlines how the Preliminary Data Assessment Appliance (PDAA) from IBM can help address the challenges of integrating data from different operational applications across the enterprise to an SAP platform. Complimentary with registration. Sponsored by IBM.
Copyright InformationPrivacy Policy Site MapAbout UsMedia CentreReprint ServicesMobileFeedbackContact Us
PC World CanadaIntergovworld.comIT Vendors DirectoryBio-IT WorldCIO TitlesCMOComputerWorld TitlesCSO
GlossaryDarwinGameProInfoworldGames.netITJobUniverseJavaWorldMacCentral
MacWorldNetwork World TitlesPCWorldPlaylistIDG WorldWide Network
©2008 ITworldcanada.com All rights reserved.