New Zeus Variant Leverages P2P Network Model
The new architecture makes it much harder for law enforcement to shut down a botnet.
Symantec researchers have found a new Zeus/SpyEye variant that uses a peer-to-peer architecture rather than a command-and-control server system.
"The P2P network architecture enables the botnet to stay alive and gather information even if portions of the network are shut down, observed Andrea Lelli in a Symantec blog," Infosecurity reports.
"Law enforcement has been able to take down botnets in the past by shutting down the C&C servers," the article states. "However, with a P2P network architecture, a botnet can avoid this single point of vulnerability."
Go to "Zeusbot/Spyeye variant uses peer-to-peer network model" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.