Exposing a SQL Injection Capable IRC Malware Bot - An Analysis
0
I've decided to share with everyone a screenshot which I took back in 2010 which basically demonstrates an IRC malware bot which is capable of executing SQL injection campaign using stolen or compromised access to malware-infected hosts where the actual C&C server activity takes place in IRC where the botnet master can basically send instructions to any of the botnet's infected hosts for the purpose of having them execute and participate in a SQL injection attack that also includes scanning and reconnaissance capabilities.
Stay tuned!
About Dancho Danchev
Independent Security Consultancy, Threat Intelligence Analysis (OSINT/Cyber Counter Intelligence) and Competitive Intelligence research on demand. Insightful, unbiased, and client-tailored assessments, neatly communicated in the form of interactive reports - because anticipating the emerging threatscape is what shapes the big picture at the end of the day. Approach me at dancho.danchev@hush.com
0 Comments: