Kraken
DarkReading has the details:
- At 400,000 bots Kraken is twice the size of Storm.
- Found at 50 of the Fortune 500.
- Undetectable in 80% of infected machines.
- Regularly updates its binary.
Kraken’s bots and command and control servers communicate via customized UDP and TCP-based protocols, he says, and the botnet has built-in redundancy features that automatically generate new domain names if a C&C server gets shut down or becomes disabled. “And the actual payload is encrypted,” Royal says.
-Shlok
Sign up for my newsletter.