Pushdo Sinkholing Continues, Size of Problem now Apparent

The sinkholing of Pushdo C&C domains continues and it has become apparent that the botnet is of quite sizeable proportions and pretty well spread globally – although some interesting prevalence patterns can be discerned in the new map provided by Bitdefender researchers, summarizing the connection attempts in the past 24 hours.

Pushdo global distribution map by unique IPs

Pushdo global distribution map by unique IPs

As can be seen, Asia is the most affected continent, in a sharp departure from the spreading patterns of other botnets which simply stay proportional with Internet connectivity in the affected countries.

 

The most affected countries, by number of unique IPs attempting to connect for the past day, are, in order:

Vietnam 1319
India 1297
Indonesia 610
United States 559
Turkey 507
Iran, Islamic Republic of 402
Thailand 345
Argentina 315
Italy 302
Mexico 274

The research project is still ongoing and further data will be made available in the following days.

2 Responses to Pushdo Sinkholing Continues, Size of Problem now Apparent


Leave a Reply

Your email address will not be published. Required fields are marked *