Follow Us

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

Blogs

War on Error

John E Dunn

Microsoft offers access to anti-botnet system

Article comments

Realtime access to botnet database system through API

At last the world’s most effective but ignored digital police force, Microsoft, has said it plans to give third-parties including CERTs, ISPs and even foreign governments automated access to its formidable botnet intelligence feeds through an API.

As an article written up by a journalist attending the ICCS Conference in Washington reports, Microsoft's Digital Crimes Unit (DCU) has announced that it is beta testing a system to offer this from its “70-node cluster running the Apache Hadoop framework on top of Windows Server.”

The system is can best be described as a sort of realtime honeypot that attempts to connect to and monitor real botnetted PCs and servers across the Internet, gathering data in traffic patterns.

Microsoft will have a lot of data in this system already as anyone who has watched the company’s spectacular attacks on the Kelihos botnet last summer will attest, adding to similar campaigns against Rustock and Waledec, will vouch for.

Microsoft is not the only company running such a system but it is the only one willing to offer the data it collects to others in an automatic feed others can hook into for free.

The reason for this generosity is simple - Microsoft is not a company that makes its money from security. Its interest is in protecting the parts of the Internet - the PC - from which is makes its money.

If digital police forces had existed to kickstart this sort of initiative years ago perhaps botnets might not have become such a problem in the first place, but we are where we are.




Share:

More from Techworld

More relevant IT news

Comments

Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Techworld White Papers

Choose – and Choose Wisely – the Right MSP for Your SMB

End users need a technology partner that provides transparency, enables productivity, delivers...

Download Whitepaper

10 Effective Habits of Indispensable IT Departments

It’s no secret that responsibilities are growing while budgets continue to shrink. Download this...

Download Whitepaper

Gartner Magic Quadrant for Enterprise Information Archiving

Enterprise information archiving is contributing to organisational needs for e-discovery and...

Download Whitepaper

Advancing the state of virtualised backups

Dell Software’s vRanger is a veteran of the virtualisation specific backup market. It was the...

Download Whitepaper

Techworld UK - Technology - Business

Innovation, productivity, agility and profit

Watch this on demand webinar which explores IT innovation, managed print services and business agility.

Techworld Mobile Site

Access Techworld's content on the move

Get the latest news, product reviews and downloads on your mobile device with Techworld's mobile site.

Find out more...

From Wow to How : Making mobile and cloud work for you

On demand Biztech Briefing - Learn how to effectively deliver mobile work styles and cloud services together.

Watch now...

Site Map

* *