Coreflood

Coreflood is a trojan horse and botnet created by a group of Russian hackers and released in 2010. The FBI included on its list of infected systems "approximately 17 state or local government agencies, including one police department; three airports; two defense contractors; five banks or financial institutions; approximately 30 colleges or universities; approximately 20 hospital or health care companies; and hundreds of businesses."^[1] It is present on more than 2.3 million computers worldwide and as of May 2011 remains a threat.

Background

Backdoor.Coreflood is a trojan horse that opens a back door on the compromised computer. It acts as a keylogger and gathers user information.^[2]

Current status

The FBI has the capability, and recently authorization from the courts, to delete Coreflood from infected computers after receiving written consent. The FBI has reduced the size of the botnet by 90% in the United States and 75% around the world.^[3]

References

^ "Coordinated Law Enforcement Action Leads to Massive Reduction in Size of International Botnet « USDOJ: Justice Blog". Archived from the original on 2011-10-15. Retrieved 2011-10-11.
^ "Backdoor.Coreflood". Symantec. November 29, 2002. Retrieved May 3, 2011.
^ "US authorities to delete Coreflood bot from computers". April 29, 2011. Retrieved May 2, 2011.

This malware-related article is a stub. You can help Wikipedia by expanding it.

[1] "Coordinated Law Enforcement Action Leads to Massive Reduction in Size of International Botnet « USDOJ: Justice Blog". Archived from the original on 2011-10-15. Retrieved 2011-10-11.

[2] "Backdoor.Coreflood". Symantec. November 29, 2002. Retrieved May 3, 2011.

[3] "US authorities to delete Coreflood bot from computers". April 29, 2011. Retrieved May 2, 2011.