A new botnet which specialises in sending out phishing spam has prompted security experts to call for enterprises to review their security protection.
The Asprox botnet uses a SQL-injection attack tool to hack websites and add yet more hijacked PCs to its army.
"Asprox is more than just another piece of botnet malware as it's what we call a 'hybrid'," said David Hobson, managing director of Global Secure Systems.
"It uses an SQL-injection attack tool that attacks legitimate websites to add to the overall botnet swarm."
Hobson explained that, while botnets and SQL injection attacks are nothing new, a malware infection that combines the two "darkware" vectors highlights the growing ingenuity of the hacker community.
"Most botnets are perpetrated these days by criminal gangs who are after your company's money. And if they can't get your money, they'll use your computers to damage your reputation. It's a simple as that," he said.
The rapid evolution of multi-vector malware like Asprox means that companies should now look seriously at multi-vendor and/or multi-layered IT security protection, according to Global Secure Systems.
"The days when firms could install a single security system on their IT resources are long gone," said Hobson.
"Companies need to review their IT security system on a regular basis and talk to their reseller about enhancing their systems to deal with the latest threats."
Hugely successful malware gets a new twist 23 Apr 2008
NCSA warns over danger posed by cyber criminals' weapon of choice 10 Apr 2008
Botnet shutdowns will force attackers to change tack next year 25 Nov 2008
Cyber criminals increasingly targeting consumers' confidential data 14 Apr 2009
Attackers are increasingly using legitimate sites to host their malware 27 Oct 2008
Finjan finds Ukraine-controlled network of nearly two million compromised PCs 22 Apr 2009
Report warns of new threats on the horizon 16 Oct 2008
Survey of public sector IT managers reveals deep concern over ability to deliver on carbon-neutral targets 03 Jul 2009
Fresh funding will provide new wave energy research equipment and support research 03 Jul 2009
EPA hints it could soon raise efficiency bar for routers, modems and storage systems 03 Jul 2009
More news
From record-breaking solar panels to the International Renewable Energy Agency's new home, we round up the top stories from the past week 03 Jul 2009
Well, I hope they got a no win, no fee deal. I don't like being cynical (it's more of a congenital thing)... 03 Jul 2009
Recycling waste heat is nothing new, so why has the computer industry not kept up? 01 Jul 2009 More in-depth
Post your comment
Send an email to the Business Green editor at feedback@businessgreen.com
