Tag Archives: torpig

Media coverage on our ACM paper on Domain-Fast Flux Botnets

Prominent journalists who routinely cover cyber security related news recently wrote about the techniques we developed to detect botnets that employ domain fast-flux. We presented our paper at ACM IMC 2010, in Melbourne, Australia. 1) “New Technique Spots Sneaky Botnets”, By Kelly … Continue reading

Posted in botnets | Tagged , , , , , , | 1 Comment

Zero-day Detection of Domain-Flux Botnets

Ever wondered why Botnets such as Conficker would generate domain names that look gibberish, i.e. from a language with no properly matching vowels and consonants? Despite the massive sophistication exhibited by Conficker, it left only one Achilles heel, and I … Continue reading

Posted in botnets | Tagged , , , , , , , | Leave a comment