The recent post from Petko D. Petkov about browser rootkit
is very interesting. Extending the Petkov's argument, the browsers can be target of a different types of malwares, not only rootkits. It could be, for example, a good platform for botnets too.
In addition, the Command Control could be built using something like the POW add-on
. POW is a webserver that can be installed and used in Firefox with just few clicks. Furthermore, POW has some interesting features like dynamic content, so it is prefect to deploy a C&C.
However, Browser Botnets
will only be a successful threat if it finds an easily and widely way to distribute itself.
Labels: Botnet, Firefox