Skip to content
Microsoft Secure

Microsoft teams up with law enforcement and other partners to disrupt Gamarue (Andromeda)

Today, with help from Microsoft security researchers, law enforcement agencies around the globe, in cooperation with Microsoft Digital Crimes Unit (DCU), announced the disruption of Gamarue, a widely distributed malware that has been used in networks of infected computers collectively called the Andromeda botnet. The disruption is the culmination of a journey that started in...

Read more

Gamarue, Nemucod, and JavaScript

Modern social engineering attacks use non-portable executable (PE) files like malicious scripts and macro-laced documents. Every month, Windows Defender AV detects non-PE threats on over 10 million machines. Learn how machine learning drives next-gen protection capabilities and cloud-based, real-time blocking of new and unknown threats: Machine learning vs. social engineering JavaScript is now being used...

Read more

Microsoft takes on world’s worst cybercriminals

Microsoft recently took legal action against a group of cybercriminals suspected of spreading malicious software to millions of unsuspecting computer users. These social media–savvy cybercriminals have not only spread the malware themselves, but they’ve also promoted their malicious tools across the Internet, offering step-by-step instructions to completely control millions of unsuspecting victims’ computers to conduct...

Read more

Sefnit’s Tor botnet C&C details

​We have talked about the impact that resulted from the Sefnit botnet Tor hazard as well as the clean-up effort that went into that threat. In this post we’d like to introduce some of the details regarding the Tor component’s configuration and its communication with the Tor service. Specifically, we’ll talk about how Trojan:Win32/Sefnit.AT communicates...

Read more

Best ways to battle botnets

What is a botnet? Botnets are networks of compromised computers that criminals use to commit fraud, such as: Secretly spreading malware Stealing personal information Hijacking Internet search results to take you to websites that are potentially dangerous How do I know if my computer is part of a botnet? Your computer might be part of a botnet...

Read more

Get free or paid support for your malware problem

Is your computer running slowly? Are programs starting unexpectedly? Is the activity light on your broadband or external modem constantly lit? Does it sound like your computer’s hard disk is continually working? If you answered “yes” to any of these questions, your computer might be infected with malware. Scan your PC for viruses If you...

Read more

Clean up malware resulting from the Bamital botnet

On February 6, Microsoft announced that its Digital Crimes Unit had worked with Symantec to successfully deactivate a major botnet called Bamital. Below is an overview of Bamital and how you can remove it from your computer. Botnets are networks of compromised computers, controlled remotely by criminals who use them to  secretly spread malware, steal personal information,...

Read more

Counterfeit Software Preloaded with Malware and the Link to Botnets: Operation b70

For years I have heard talk in the industry that much of the counterfeit software available on the Internet was preloaded with malware.  How much of the counterfeit software available is preloaded with malware?  What type of malware is preloaded on these systems and what does it allow the attackers to do?  ...

Read more

Microsoft battles Zeus ID theft botnet

Microsoft, in collaboration with the financial services industry, successfully executed a coordinated global action against the Zeus botnet. Zeus is a type of malware that can monitor your online activity and record your keystrokes to commit identity theft. Learn more about the botnet takedown. If you think that your computer might be infected with the...

Read more

U.S. ISPs Commit to Help Protect Consumers from Botnets

Botnets and other malware continue to threaten the computing environment online that our society relies upon for communication, commerce and collaboration. In the past several years, we along with industry partners have made great strides toward containing and even pushing back against security threats and collaboration is essential to driving this change in the IT...

Read more