Shark Bait

Knowledge Centers

Operating Systems

Networking & Internet

Mobile & Wireless

Security

Storage

Business Intelligence

Servers & Data Center

Computerworld Reports

Industry

See your link here

Douglas Schweitzer

The Security Sector

What's a "bot," you ask?

8 comments

IT TOPICS:Security

For those of you unfamiliar or unsure of the term, a bot's essentially just another term for an infected computer. According to this article, the FBI announced yesterday that they've identified over a million bots, which led them to arrest of three of the men they say are responsible. Surprisingly, most users remain unaware that their personal computers have become bots within "botnets" (large numbers of hijacked computers) and are under the control of "bot herders" (a self-explanatory term). Compromised systems that repeatedly reboot and/or freeze are one thing, but it seems some of the infected systems were at hospitals, which caused disruptions in medical services to patients. When people's lives are put in jeopardy, I'm glad to see the FBI come in and lay down the law. Actually, the FBI has been trying to tackle this problem for a while now as part of its so called "Operation Bot Roast". The question comes up though, will they really be able to make that much of a difference?

Email this

Digg this

What People Are Saying

Add new comment

Good retort!

Submitted by Doug Schweitzer on June 29, 2007 - 7:37 A.M.

Good retort!

Reply | Report this comment

I think you said essentially

Submitted by Michael on June 29, 2007 - 7:05 A.M.

I think you said essentially because you said essentially.

Reply | Report this comment

Why do you think I said

Submitted by Doug Schweitzer on June 28, 2007 - 10:36 A.M.

Why do you think I said essentially and not actually? I was just trying to keep things simple and lead the reader into the actual blog.

Now for the fun part...

This blog isn't about the precise defintion of "bot" but more about the problem and the FBI's involvment in the area. The title was just a grab line. Next time I'll use Zombie instead if it makes you feel better.

Reply | Report this comment

What Doug is referring to as

Submitted by Michael on June 28, 2007 - 9:23 A.M.

What Doug is referring to as a 'bot' used to commonly be called a zombie and I actually like that term better because it infers mindless actions and a 'bot' or 'zombified' computer doesn't take nefarious actions of its own accord, a 'bot herder' pulls its strings and gives it commands. Farnum has a good point that there are good bots and bad bots and for the remainder of my comment, my use of 'bot' infers the nasties.

I think the argument would benefit from actually differentiating between a bot or zombie and the more simplified term 'compromised computer.'

A bot or zombie is a compromised computer that is controllable by a remote entity. A machine compromised by Code Red is not a bot or zombie but is still a compromised computer. If a machine compromised by Code Red contacted a command and control (C&C) mechanism, then it would be a bot or zombie.

Therefore the argument isn't mere semantics. It's an argument of accuracy and if you're going to offer a definition of something to the public assuming they don't already know what it is, you need to be specific and accurate.

"What's a truck?" Its an automobile. Does that define a truck? Sure, but it doesn't extend anyone's knowledge too far.

Reply | Report this comment

Let's get real here.

Submitted by Doug Schweitzer on June 18, 2007 - 3:03 P.M.

Let's get real here. Software needs hardware to run on and harware needs software to tell it what to do. Therefore, there is a kind of "symbiotic" type relationship between the two. Sure a "bot" can be good or bad and while it may be "software" in the true definition of the word, once a bad one takes over your machine you won't care about any of this type of nonsense you'll just want it out!

Reply | Report this comment

Douglas, Actually, it is a

Submitted by Michael R. Farnum on June 15, 2007 - 8:39 P.M.

Douglas,

Actually, it is a common misconception that a bot is the infected computer. The bot is the program that is infecting the computer. Actually, a bot is not necessarily malware. Bots can have legitimate uses, such as spiders that crawl the web for a search engine. Basically, a bot is a program that performs menial tasks that a human doesn't want to perform or is unable to efficiently perform (even if that means attacking a network or sending spam).

The term "bot" is taking on the same negative connotation that the term "hacker" is taking on, and that is unfortunate. At least a bot doesn't have feelings. :)

Michael R. Farnum

Better to be despised for too anxious apprehensions than ruined by too confident a security.
Edmund Burke (1729 - 1797)

Reply | Report this comment

Semantics? Bots can have

Submitted by jbl on June 18, 2007 - 1:59 P.M.

Semantics?

Bots can have legitimate uses, such as spiders that crawl the web for a search engine.

If search engines gather their data by planting software in unprotected machines out in the net, this is news to me, and I sincerely hope it ain't so. (Especially as one function of malware bots is to look for more uninfected and unprotected PCs to spread to.)

If you mean that the search company owns lots of computers that run programs (spiders) that explore the web to gather data, this I believe; but I can't think of any sense in which these are "bots", unless you expand the term to mean any automatic ("robotic") software that operates independently of human control to do some highly repetitive action.

Oh, hey. I see rereading your paragraph that this is pretty much how you define a "bot". I think we need a term for the malware version, and for me "bot" is just just the right word. And I say this as someone who once was a very happy hacker in the old sense of that word.

Reply | Report this comment

Semantics!

Submitted by Doug Schweitzer on June 16, 2007 - 6:21 A.M.

Semantics!

Reply | Report this comment

Your next stop ... the Password Zone

Latest threat vector: Our mobile devices

Obama Drupal-ing around; whitehouse.gov goes open source

Testing Microsoft Security Essentials and the Hosts file

LIVE Nov 10, 2009 12:00 PM ET

Architecting Business Intelligence Applications for Change: The Open Solution

LIVE Nov 12, 2009 02:00 PM ET

The State of PCI DSS Compliance at Organizations Today
Download this resource today!

Managing Secure File Transfer to Save Time, Money and IT Resources
Learn how companies are using innovative technology to overcome these challenges and improve user productivity by offloading e-mail attachments and replacing FTP with...

Can Heuristic Technology Help Your Company Fight Viruses?
What is Heuristic Technology and how can it help safeguard your business against viruses? Learn more.

Security Convergence Equals Network Security Cost Savings
Listen to IBM Internet Security Systems' take on network security convergence.

Why Email Must Operate 24/7 and How to Make This Happen
Learn how to avoid an email outage by implementing a hosted email continuity solution.

Lower the Cost and Complexity of a Mobile Workforce through Automation
Download This Resource Now!

All White Papers | All Webcasts

Computerworld Reports

8 Questions To Ask About Your Intrusion-Security Solution

Computerworld Technology Briefings IT Service Management

Computerworld Briefing - Analytics: The Art and Science of Better

All Computerworld Reports

Receive the latest technology news and information.

	Computerworld Daily News (First Look and Wrap-Up)
	Computerworld Blogs Newsletter
	The Weekly Top 10

View all newsletters

* E-mail Address:

* Industry:

* Job Title:

* Company Size:

* Country:

* State:

I would like to receive offers via e-mail from Computerworld partners.

Douglas Schweitzer's Archive

IT Topics

Sponsored Links

Play NetApp's New Data Defense Game.

How Do You Rank as an Innovation Leader? Download Recent Study.

Play NetApp's New Data Defense Game.

Extraordinary times demand Brocade Extraordinary Networks.

No Payments for Up to 6 Months on Orders over $500.

NetScaler VPX : Harness the Power of Virtualized Web App Delivery

64-page prescriptive guide to security, compliance, and IT operations.

Streamline IT Costs. Boost Performance with WAN Optimization

Enterprise Network & Server Monitoring Software. Cross over to Traverse...

Keep your IT expertise up to date. Join the Intel Premier IT Professionals.

Crystal Reports Server: More options. Not more money.

Parallelism is not just for HPC. Create rich apps from desktop to device. Get the eval.

Tolly Performance Report "Citrix NetScaler with nCore Outperforms F5 BIG-IP"

Save up to 61% plus Free Cheesecake

Find IT jobs in the Healthcare industry on Dice.com

With the NEW KODAK i700 Series Scanners get full speed at 300dpi!

Not All QSAs Are Created Equal: What You Should Know Before You Buy

The arrival of Serial Attached SCSI (SAS) marks a new era in storage scalability

The AMD Virtual Experience Virtual Trade Show

New DW Options and Price Points. View Teradata Platform Family Data Sheet.

See how AT&T can help protect your network.

3 Innovations. 3 Free Downloads. Free trials of Windows 7, Windows Server 2008 R2 and Exchange Server 2010.

Take the Netezza TwinFin TestDrive!

Citrix NetScaler with nCore Outperforms F5 BIG-IP - Learn More

New Analytical Platform Options. Download Data Sheet and More.

Get more enterprise mobility value for up to 25% less.

Unified Communications: Thoughts, Strategies and Predictions. Join the discussion.

NYUs M.S. in Management and Systems. Offered Online and On-site.

Increase UPS efficiency without sacrificing protection

Crystal Reports Server: Single server access to reports & dashboards

Create new opportunities. See business making progress now

ESET NOD32 with ThreatSense(R) - Get your free trial now!

Looking to add Unix/Linux functionality to Windows?

Join the conversation about the hottest IT trends with Computerworld on Twitter.

ITwhitepapers.com - Access thousands of white papers on 300+ technical topics.

Leverage Your Cisco infrastructure for Superior Application Performance

Learn about the AMD Virtual Experience

Introducing: Project Icebreaker

About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map

CIO

Computerworld

CSO

DEMO

GamePro

Games.net

IDC

IDG

IDG Connect

IDG Knowledge Hub

IDG TechNetwork

IDG Ventures

IDG.net

InfoWorld

ITwhitepapers

ITworld

JavaWorld

LinuxWorld

Macworld

Network World

PC World

The Industry Standard

Copyright © 1994 - 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of
Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.

What's a "bot," you ask?

What People Are Saying

Good retort!

I think you said essentially

Why do you think I said

What Doug is referring to as

Let's get real here.

Douglas, Actually, it is a

Semantics? Bots can have

Semantics!

Related Posts

Today's Top Stories

Hot Posts

Recent Comments

White Papers & Webcasts

Computerworld Reports

Newsletters

Douglas Schweitzer's Archive

IT Topics

Sponsored Links