1 post • joined Saturday 7th March 2009 11:12 GMT
Seems like more "doom and gloom"
I think it's good to report stories like this, but it would be much better if some positive was included.
The link to the PDF from Damballa leads to nothing more than a sales paper.
If so many computers are really infected, PLEASE publish a list of "best" methods of detection. Surely somebody markets software that can detect and remove these bots.
Has there ever been a public demonstration to show that a computer is really "infected" by a bot, and that the leading AS/AV software fails to find the bot? I have scoured the internet searching for such info, but can not find anything.
I believe corporations such as Damballa release this kind of "study" data for marketing purposes, and that in most cases it is fabricated. If they are really legitimate, then why not offer some specific help to people? If 1 in 20 "corporate" computers are infected, then how many "personal" computers are infected, and who is doing something to help get them cleaned up???
I apologize for sounding negative, but I find this very irritating. These "sky is falling" stories hit the news frequently, and it's always the same - "The world is in trouble", while making NO mention of any potential solution.
The Damballa "study" does not name any defense software it tested, nor does it state a method of infection. How do the infected machines become infected? Is it by visiting a malicious web site? Opening infected email? How exactly does the process work?
Given that almost all corporations have multiple software applications, and sometimes even hardware, in place as defense, I can only assume that if 1 in 20 of them become infected, then a much higher number of "home" computers must be infected.
It would be nice if somebody would publish a recommended course of action along with this type of article.