Coreflood

From Wikipedia, the free encyclopedia
Jump to: navigation, search

Coreflood is a trojan horse and botnet created by a group of Russian hackers and released in 2010. The FBI included on its list of infected systems "approximately 17 state or local government agencies, including one police department; three airports; two defense contractors; five banks or financial institutions; approximately 30 colleges or universities; approximately 20 hospital or health care companies; and hundreds of businesses."[1] It is present on more than 2.3 million computers worldwide and as of May 2011 remains a threat.

Background[edit]

Backdoor.Coreflood is a trojan horse that opens a back door on the compromised computer. It acts as a keylogger and gathers user information.[2]

Current status[edit]

The FBI has the capability, and recently authorization from the courts, to delete Coreflood from infected computers after receiving written consent. The FBI has reduced the size of the botnet by 90% in the United States and 75% around the world.[3]

References[edit]

  1. ^ http://blogs.usdoj.gov/blog/archives/1320
  2. ^ "Backdoor.Coreflood". Symantec. November 29, 2002. Retrieved May 3, 2011. 
  3. ^ "US authorities to delete Coreflood bot from computers.". April 29, 2011. Retrieved May 2, 2011.