Another botnet - another warning to be cautious - Bahama B..

MEB · External Since: Sep 22, 2009 Posts: 8

Yet another botnet, referred to as "Bahama Botnet" has been discovered.
Though not new, having been exposed previously, the extent of the
activity has recently been found to extend well beyond the original
activity.

http://blog.clickforensics.com/?p=314

Be cautious, you may inadvertently become part of/subjected to this
activity. Of course, this is also a good indication regarding other
potential uses, and methods being employed.

--
MEB
http://peoplescounsel.org/ref/windows-main.htm
Windows Info, Diagnostics, Security, Networking
http://peoplescounsel.org
The "real world" of Law, Justice, and Government
___---

98 Guy · External Since: Mar 12, 2005 Posts: 443

MEB wrote:

> Yet another botnet, referred to as "Bahama Botnet" has been
> discovered.

An irrelavent piece of information. PC users have nothing to fear from
any given bot-net per se. What they have to fear are the methods used
or the vulnerabilites exploited that results in your PC being
incorporated into a given botnet.

A new botnet rarely equals a new vulnerability or recruitment method.

Now here comes the cryptic verbiage that MEB peppers his posts with:

> Though not new, having been exposed previously, the extent of the
> activity has recently been found to extend well beyond the
> original activity.

and

> Be cautious, you may inadvertently become part of/subjected to
> this activity. Of course, this is also a good indication
> regarding other potential uses, and methods being employed.

The two example paragraphs above show that MEB is indeed perfecting his
art of crafting semi-coherent sporge.

Well done MEB. I give that effort a 4 out of 5 on the incomprehensible
scale.

MEB · External Since: Sep 22, 2009 Posts: 8

98 Guy wrote:
> MEB wrote:
>
>> Yet another botnet, referred to as "Bahama Botnet" has been
>> discovered.
>
> An irrelavent piece of information. PC users have nothing to fear from
> any given bot-net per se. What they have to fear are the methods used
> or the vulnerabilites exploited that results in your PC being
> incorporated into a given botnet.
>
> A new botnet rarely equals a new vulnerability or recruitment method.
>
> Now here comes the cryptic verbiage that MEB peppers his posts with:
>
>> Though not new, having been exposed previously, the extent of the
>> activity has recently been found to extend well beyond the
>> original activity.
>
> and
>
>> Be cautious, you may inadvertently become part of/subjected to
>> this activity. Of course, this is also a good indication
>> regarding other potential uses, and methods being employed.
>
> The two example paragraphs above show that MEB is indeed perfecting his
> art of crafting semi-coherent sporge.
>
> Well done MEB. I give that effort a 4 out of 5 on the incomprehensible
> scale.

AHAHAHAHAH, you are are an idiot.... READ what I wrote and what is on
that link, progress through the natural order of events, compare this
activity to other similar, then formulate a educated opinion...

Ah don't bother, you would never be able to read and understand the
linked material in the first place.

Go back under your rock..

--
MEB
http://peoplescounsel.org/ref/windows-main.htm
Windows Info, Diagnostics, Security, Networking
http://peoplescounsel.org
The "real world" of Law, Justice, and Government
___---

Jeff Richards · External Since: Mar 14, 2004 Posts: 1333

Please note that the above threat is not relevant to Windows 98 users.

1. The inducement to download relies on a page that is supposed to look like
an Explorer window in XP. W98 users would detect it immediately as a fraud.

2. The downloaded package will not work in a W98 system. For instance, it
relies on:
advapi32.dll: FreeSid
advapi32.dll: InitializeAcl
advapi32.dll: LockServiceDatabase
advapi32.dll: CloseServiceHandle
advapi32.dll: ChangeServiceConfigA
none of which exist in a W95/98/ME system.
--
Jeff Richards
MS MVP (Windows - Shell/User)

"MEB" <MEB-nothere.TakeThisOut@hotmail.com> wrote in message
news:eI6RZk6OKHA.5488@TK2MSFTNGP02.phx.gbl...
>
> Yet another botnet, referred to as "Bahama Botnet" has been discovered.
> Though not new, having been exposed previously, the extent of the
> activity has recently been found to extend well beyond the original
> activity.
>
> http://blog.clickforensics.com/?p=314
>
> Be cautious, you may inadvertently become part of/subjected to this
> activity. Of course, this is also a good indication regarding other
> potential uses, and methods being employed.
>
> --
> MEB
> http://peoplescounsel.org/ref/windows-main.htm
> Windows Info, Diagnostics, Security, Networking
> http://peoplescounsel.org
> The "real world" of Law, Justice, and Government
> ___---

MEB · External Since: Sep 22, 2009 Posts: 8

Jeff Richards wrote:
> Please note that the above threat is not relevant to Windows 98 users.
>
> 1. The inducement to download relies on a page that is supposed to look like
> an Explorer window in XP. W98 users would detect it immediately as a fraud.
>
> 2. The downloaded package will not work in a W98 system. For instance, it
> relies on:
> advapi32.dll: FreeSid
> advapi32.dll: InitializeAcl
> advapi32.dll: LockServiceDatabase
> advapi32.dll: CloseServiceHandle
> advapi32.dll: ChangeServiceConfigA
> none of which exist in a W95/98/ME system.

Thank you Jeff,, however, the notice is relevant as it displays the
continuing *modification* of a botnet. As 98 users have repeatedly been
drawn into these same types of activities, AND as the post indicates, it
is a WARNING to be on the lookout for such activities. This particular
botnet IS, after all, under constant modifications at the moment.

--
MEB
http://peoplescounsel.org/ref/windows-main.htm
Windows Info, Diagnostics, Security, Networking
http://peoplescounsel.org
The "real world" of Law, Justice, and Government
___---