1. Forum
  2. Usenet
  3. UK.COMP.HOMEBUILT

  • OT: Botnets

    From GB@21:1/5 to All on Wed Apr 6 16:17:39 2022
    https://therecord.media/ukraine-arrests-operator-of-ddos-botnet-with-100000-bots/

    Ukrainian law enforcement announced the arrest of a suspect on
    accusations of running a giant malware botnet of more than 100,000
    infected systems.

    What happens to a botnet, if the operator is arrested? Is it now in the
    hands of the Ukraine armed forces?

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Marco Moock@21:1/5 to All on Wed Apr 6 18:02:44 2022
    Am Mittwoch, 06. April 2022, um 16:17:39 Uhr schrieb GB:

    What happens to a botnet, if the operator is arrested? Is it now in
    the hands of the Ukraine armed forces?

    I don't know it, but I assume the Ukrainian government will use it for
    their purposes.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Chris@21:1/5 to Marco Moock on Wed Apr 6 17:02:25 2022
    Marco Moock <mo01@posteo.de> wrote:
    Am Mittwoch, 06. April 2022, um 16:17:39 Uhr schrieb GB:

    What happens to a botnet, if the operator is arrested? Is it now in
    the hands of the Ukraine armed forces?

    I don't know it, but I assume the Ukrainian government will use it for
    their purposes.

    I doubt they have the capability.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Marco Moock@21:1/5 to All on Wed Apr 6 20:40:29 2022
    Am Mittwoch, 06. April 2022, um 17:02:25 Uhr schrieb Chris:

    Marco Moock <mo01@posteo.de> wrote:
    Am Mittwoch, 06. April 2022, um 16:17:39 Uhr schrieb GB:

    What happens to a botnet, if the operator is arrested? Is it now in
    the hands of the Ukraine armed forces?

    I don't know it, but I assume the Ukrainian government will use it
    for their purposes.

    I doubt they have the capability.

    I think they have at least some technicians that are able to do so.
    If not, they are very poor. ]:-)

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Theo@21:1/5 to NOTsomeone@microsoft.invalid on Wed Apr 6 23:43:46 2022
    GB <NOTsomeone@microsoft.invalid> wrote:
    What happens to a botnet, if the operator is arrested? Is it now in the
    hands of the Ukraine armed forces?

    There will be a command and control server - the nodes of the botnet check
    in for further instructions. A common technique is for law enforcement to
    take over the C&C server, so they now control the botnet. If the bot herder
    is arrested without taking down the C&C server, presumably the botnet will continue to do whatever it was doing beforehand. (It may be the nodes do nothing unless specifically instructed by the C&C server, in which case the operator going dark would cause the nodes to do nothing but still be
    checking in to the network)

    Theo

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Vir Campestris@21:1/5 to Marco Moock on Thu Apr 7 21:34:25 2022
    On 06/04/2022 19:40, Marco Moock wrote:
    I think they have at least some technicians that are able to do so.
    If not, they are very poor. ]:-)

    I meet Ukranians every day on a zoom call. They seem to know what they
    are doing, and we are developing software.

    Andy

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)