IRC Botnet Discovered To Use Tor Networks
G Data Software Ė a German anti-virus company Ė has discovered a controlled from an IRC server botnet inside Torís networks.
According to security researchers working for G Data Software, the botnet is running through an IRC (Internet Relay Chat) server which is hidden inside Torís networks.
There are certain advantages and disadvantages that come with this method, the researchers said. The obvious benefit is that the botnet server canít be shut down, since itís almost impossible to pin-point its location.
Besides the fact that Torís protocol includes encrypted data running through a series of nodes, thus making surveillance on a specific network extremely difficult, thereís also the issue of blocking the traffic coming from these infected computers; hence, the botnetís efficiency is enhanced.
Although Tor Project has been built for legitimate use, there are certain cases in which people take advantage on their services. This is not the first case; in the past, Tor has been used to sell illegal drugs online.
Thereís also a drawback to this method, as pointed out by G Dataís researchers:
ďIt has to be noted that malware like this suffers from the latencies that come with the Tor network.
In other words: Tor tends to be slow and unreliable, and inherits these flaws to underlying botnets.Ē