Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

4/19/2007
06:55 AM
50%
50%

Aliens, Protein, and Bots

Today's grids may be tomorrow's botnets

2:55 PM -- Bet you think botnets can't be used for anything good. But what about research computing grids like [email protected] and [email protected], which are basically networks of client machines used to expand computing resources for research purposes? (See Aliens Steal Laptop! and Botnets Battle Over Turf.)

"Think of SETI or Folding as a good botnet, being remotely controlled to do good stuff," says Randy Abrams, director of technical education for Eset.

Of course, SETI's alien-watching and Folding's protein research grids are legitimate and purely voluntary, he says, but their infrastructure poses some risks -- of a botnet operator gaining control of them to expand their armies, or security breaches opening the networks up to hackers. (SETI a couple of years ago was discovered to have bugs that could have turned the network over to a botnet's control.)

Abrams, who recently blogged about this, says he's actually more worried that if the research grid concept takes off, then eventually savvy commercial types will jump onboard with not-so-philanthropic grids of their own. "I can see real abuses of it," he says. A company could offer you a free secure digital card if you provide a few cycles of your PC when your asleep at night, but could instead use it for a spam run, he says. "Or 'let us collect information on how you use your computer, for our marketing research,'" he says, and they also download confidential information, unbeknownst to the user.

"'Grid' may well be tomorrow's euphemism for commercial botnet," he writes in his blog.

The commercial possibilities are creepy, for sure. But with botnets already battling one another for more drones, what's to stop them from trying to recruit thousands of alien-watchers?

— Kelly Jackson Higgins, Senior Editor, Dark Reading

  • ESET

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    Navigating Security in the Cloud
    Diya Jolly, Chief Product Officer, Okta,  12/4/2019
    Register for Dark Reading Newsletters
    White Papers
    Video
    Cartoon Contest
    Write a Caption, Win a Starbucks Card! Click Here
    Latest Comment: "The security team seem to be taking SiegeWare seriously" 
    Current Issue
    Navigating the Deluge of Security Data
    In this Tech Digest, Dark Reading shares the experiences of some top security practitioners as they navigate volumes of security data. We examine some examples of how enterprises can cull this data to find the clues they need.
    Flash Poll
    Rethinking Enterprise Data Defense
    Rethinking Enterprise Data Defense
    Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2012-1114
    PUBLISHED: 2019-12-05
    A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the filter parameter to cmd.php in an export and exporter_id action. and the filteruid parameter to list.php.
    CVE-2012-1115
    PUBLISHED: 2019-12-05
    A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the export, add_value_form, and dn parameters to cmd.php.
    CVE-2012-1592
    PUBLISHED: 2019-12-05
    A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a malicious user upload and execute arbitrary files.
    CVE-2019-16770
    PUBLISHED: 2019-12-05
    A poorly-behaved client could use keepalive requests to monopolize Puma's reactor and create a denial of service attack. If more keepalive connections to Puma are opened than there are threads available, additional connections will wait permanently if the attacker sends requests frequently enough.
    CVE-2019-19609
    PUBLISHED: 2019-12-05
    The Strapi framework before 3.0.0-beta.17.8 is vulnerable to Remote Code Execution in the Install and Uninstall Plugin components of the Admin panel, because it does not sanitize the plugin name, and attackers can inject arbitrary shell commands to be executed by the execa function.