Countries with the most botnets
A colleague needs to know, along with citable sources if possible. Ideally - number of zombified PCs, percentage of zombified PCs, name of nation, source. Threat reports from symantec and macafee suggest the US leads, with China a very close second. Yes, we realize that answers will be imperfect. --Steve Bellovin, http://www.cs.columbia.edu/~smb
The Conficker data would be one empirical source you can look at. You have a break down by ASN and Country: http://www.shadowserver.org/wiki/pmwiki.php/Stats/Conficker
-----Original Message----- From: Steven Bellovin [mailto:smb@cs.columbia.edu] Sent: Wednesday, January 27, 2010 3:08 PM To: nanog@nanog.org list Subject: Countries with the most botnets
A colleague needs to know, along with citable sources if possible.
Ideally - number of zombified PCs, percentage of zombified PCs, name of nation, source.
Threat reports from symantec and macafee suggest the US leads, with China a very close second.
Yes, we realize that answers will be imperfect.
--Steve Bellovin, http://www.cs.columbia.edu/~smb
Team Cymru seems to put out a lot of information in their newsletters about where bots are, e.g. this article about the locations of botnet controllers: <http://www.team-cymru.org/ReadingRoom/Articles/botnet-cnc-tlds-and-countries.html> On Wed, Jan 27, 2010 at 6:07 PM, Steven Bellovin <smb@cs.columbia.edu> wrote:
A colleague needs to know, along with citable sources if possible.
Ideally - number of zombified PCs, percentage of zombified PCs, name of nation, source.
Threat reports from symantec and macafee suggest the US leads, with China a very close second.
Yes, we realize that answers will be imperfect.
--Steve Bellovin, http://www.cs.columbia.edu/~smb
The CBL has stats too - http://cbl.abuseat.org/totalflow.html - total spamtrap flow http://cbl.abuseat.org/country.html - by country (india leads the pack yay?) http://cbl.abuseat.org/domain.html - by ISP On Thu, Jan 28, 2010 at 4:37 AM, Steven Bellovin <smb@cs.columbia.edu> wrote:
A colleague needs to know, along with citable sources if possible.
Ideally - number of zombified PCs, percentage of zombified PCs, name of nation, source.
Threat reports from symantec and macafee suggest the US leads, with China a very close second.
Yes, we realize that answers will be imperfect.
-- Suresh Ramasubramanian (ops.lists@gmail.com)
On Wed, 27 Jan 2010, Steven Bellovin wrote:
A colleague needs to know, along with citable sources if possible.
Ideally - number of zombified PCs, percentage of zombified PCs, name of nation, source.
Threat reports from symantec and macafee suggest the US leads, with China a very close second.
Yes, we realize that answers will be imperfect.
Data is of course needed as a starting point. But does anyone have anything to explain differences between countries, industries, some other distinction, if any? Although we use terms from biology, i.e. infection, virus, etc; bots aren't naturally occuring phenomena. Or even in small communities, do universities have differences between themselves? Resnets vs faculty? Engineering vs arts & sciences?
participants (5)
-
Barry Raveendran Greene
-
Richard Barnes
-
Sean Donelan
-
Steven Bellovin
-
Suresh Ramasubramanian