A botnet was discovered which used Twitter to communicate commands to its connected zombie computers.
The account, which had the name upd4t3, used Twitter messages to send new links for infected computers to contact.
The account, which has now been suspended, was discovered by Arbor Networks’ security researcher Jose Nazario.
He said on the Arbor blog: “Basically what it does is use the status messages to send out new links to contact, then these contain new commands or executables to download and run.”
Nazario described it as one of a “handful” of Twitter accounts that ran as command and control structures.
Security vendor F-Secure said that it was the first time that Twitter had been used as a botnet’s command and control structure.
Historically botnets, which are usually made up of a collection of compromised computers, have been controlled using means of communication such as IRC channels.
Botnet creators can use them to perform illegal acts such as denial-of-service attacks or the theft of credit card information.
Twitter had not responded to request for comments. The site has also received bad press recently as employees have been accused of time wasting at work while using the site. While it is no different to the likes of Facebook or other social media in this respect, Twitter’s current popularity means that it is first to be named when the issue of work time and social media is dealt with.
Twitter can be used successfully for commercial purposes, particularly in the areas of customer support and feedback. Again, its current popularity gives a greater strength to its immediacy and accessibility advantages.
Subscribers 0
Fans 0
Followers 0
Followers