Microsoft takes down major fake drug spam network

Microsoft on Thursday announced the dismantling of a “notorious and complex” network of virus-infected computers used to send billions of email messages daily hawking fake drugs.

The Rustock “botnet” consisted of about a million computers that were infected with malicious code to let hackers covertly control the machines from afar using “command and control” servers.

Owners of infected computers are typically not aware that hackers are using their machines.

“Bot-herders infect computers with malware in a number of ways, such as when a computer owner visits a website booby-trapped with malware and clicks on a malicious advertisement or opens an infected email attachment,” said Microsoft Digital Crimes Unit senior attorney Richard Boscovich.

“Bot-herders do this so discretely that owners often never suspect their PC (personal computer) is living a double life.”

Rustock was reported to be among the world’s largest spam botnets and was capable of sending as many as 30-billion emails per day.

Much of the email sent by Rustock advertised counterfeit or unapproved knock-off versions of drugs like Viagra, while other spam tried to dupe people with bogus Microsoft lottery notices, according to Boscovich.

Microsoft worked with Viagra-maker Pfizer and network security firm FireEye during a months-long investigation that culminated with using US warrants to seize “command and control” servers in the western state of Washington.

Rustock was knocked offline on Wednesday when the connection was severed between infected computers and the machines used to give them orders, according to Boscovich.

Evidence seized was being analysed for clues about the hackers and their operations. Microsoft was offering tools at to purge the malware from infected computers. — Sapa-AFP

An actual Black Friday deal

Subscribe for R2/mth for the first three months. Cancel anytime.

Subscribers get access to all our best journalism, subscriber-only newsletters, events and a weekly cryptic crossword.

Related stories


Already a subscriber? Sign in here


Latest stories

High court allows Freedom Under Law to oppose Hlophe’s review...

The court found that the organisation’s past history in ensuring the misconduct inquiry against the Western Cape judge president was reopened refuted, rather than supported, Hlophe’s objections

Exclusive: Join expert vaccinologist Prof Shabir Madhi as he unpacks...

In a world exhausted from almost two years of a covid-19, over the past week we got news of yet another worrying turn in the pandemic

Covid-19 vaccines still protect against severe illness from the Omicron...

The vast majority of hospital admissions in Gauteng are of unvaccinated people, data from the National Institute for Communicable Diseases shows

Impala Platinum re-enters Royal Bafokeng Platinum buyout bid

The announcement comes just weeks after competitor Northam inked a deal to acquire up to 33.3% of Royal Bafokeng Platinum

press releases

Loading latest Press Releases…