Botnet Targets Major Web Sites With Junk SSL Connection

[Brian Warkoczeski]

Botnet Targets Major Web Sites With Junk SSL Connection

Jeremy Kirk, Idg News Service – Mon Feb 1, 11:00 am ET

More than 300 Web sites are being pestered by infected computers that 
are part of the Pushdo botnet, according to security researchers.

The U.S. Federal Bureau of Investigation, Twitter and PayPal are among 
the sites being hit, although it doesn't appear the attacks are designed 
to knock the sites offline, said Steven Adair, of The Shadowserver 
Foundation, a group that tracks botnets.

Shadowserver was tipped off to the Pushdo issue by Joe Stewart, director 
of malware analysis at vendor SecureWorks.

Pushdo, which is also known as Pandex or Cutwail, has been around for 
about three years, according to a report from Trend Micro. Computers 
infected with Pushdo are used to send out spam, but the malware is 
capable of downloading other harmful code to a computer.

For the rest of the story, please see:

http://news.yahoo.com/s/pcworld/20100201/tc_pcworld/botnettargetsmajorwebsiteswithjunksslconnection