The Necurs botnet is one of the largest around at the moment and is principally known for sending spam including the Locky ransomware. However, new research from BitSight's Anubis Labs has uncovered a new component being loaded in infected systems that allows it to use bots to enable proxy communications and perform DDoS attacks. The module has a compilation date in August 2016, although there's no evidence that these new capabilities have yet been used in anger. A botnet the size of Necurs, if used for DDoS attacks, is likely to cause severe disruption wherever it hits, being very capable of…
[Continue Reading]