 |
|
|---|
Botnets are a growing threat, but there are six steps that security professionals can take to fight back.
Web-filtering services are one of the best ways to fight bots. These services scan for Web sites exhibiting unusual behavior or known malicious activity and block those sites from users.
Websense, Cyveillance and FaceTime Communications are examples. All monitor the Internet in real time to find Web sites engaged in suspicious activity, such as downloading JavaScript and performing screen scrapes and other tricks outside the boundaries of normal Web browsing. Cyveillance and Support Intelligence also offer services that notify Web-site operators and ISPs that malware has been discovered, so hacked servers can be fixed, they say.
Another tactic to prevent bot infections is to standardize on a browser other than Internet Explorer or Mozilla Firefox, the two most popular and hence the browsers for which most malware is written. The same tactic works for operating systems. Macs statistically are safe from botnets, as is desktop Linux, because most bot herders target Windows.
Rss FeedRss Feed
The Leader in Network Knowledge
Comments (5)
RE: Six ways to fight back against botnetsBy SysAdmin on July 6, 2007, 4:21 pmIt can be tough to upgrade older Symantec Antivirus (SAV) clients to one of the newer versions that supports advanced capabilities like rootkit detection and removal....
Reply | Read entire comment
RE: Six ways to fight back against botnetsBy Anonymous on July 9, 2007, 9:53 amSuggestion 4 (deploy IPS/IDS) mixes up IPS and NBA, which are different types of products. Network Behavioral Anomaly (NBA) systems look for unusual traffic activity....
Reply | Read entire comment
Why six ways to fight back?By meatpieandtatters on July 10, 2007, 12:29 pmHow about making this real simple? Close all unneeded outbound ports and regularly monitor traffic for unusual activity. Also, if user's base-line their operations...
Reply | Read entire comment
TRend Micro BIS is the Complete SolutionBy Rishi Khare on August 3, 2007, 5:17 amI have gone through all the solution available in the market and found Syamantec is effective in case of Root Kit removal but in case of Botnet Identification Trend...
Reply | Read entire comment
User awareness and support guys trainingBy xmachine on March 7, 2008, 7:30 amFrom my experience, I've found that the computer-support guys don't have the needed skills to observe and clean bots infected machines. Training, books, attending...
Reply | Read entire comment
View all comments