Command and control

Central system controlling a botnet

C&C servers are central points used for the control of botnets. Bots will usually report back in some way, often via IRC or other simple messaging protocols, once a new system is infected, and will then receive commands from the central server.

Many forms of bot join dedicated chat sessions run on the C&C server, posting updates on their status and listening out for keywords which spark specific actions, such as sending out spam emails or downloading updated versions of their own code. Harvested data such as email address lists and banking details may also be posted to the C&C server, from where the botmaster can gather them and use them for further spamming and fraud.

Recently more sophisticated botnets have begun using dstributed control systems, communicating information and commands peer-to-peer to avoid the vulnerable single-point-of-failure represented by the C&C server.

Poll

Do you use the same password(s) across multiple websites?
I use the same password for all sites
I have a number of passwords but use the same for some sites
I use a different password for each site
I don't sign up to any sites that require a password

Leave a comment
View 4 comments
Jobs Recruit Sidebar

Virus Bulletin

In this month's magazine:
  • Social networking meets social engineering
  • Flying solo
  • Geneva convention
  • 7th German Anti Spam Summit 2009
  • Anti-phishing landing page: turning a 404 into a teachable moment
  • An update on spamming botnets: are we losing the war?
  • Windows Server 2008 Standard Edition SP2 x86
Virus Bulletin 10 2009
Subscribe now!
Virus Bulletin currently has 190,375 registered users.