Microsoft Corporation announced today that they have helped disrupt yet another network of malware infected computers, this time finding computers for sale at retail with the malware already installed. Microsoft has been an active player in combating botnets around the world. Cooperating with US officials, they have previously helped take down the Kelihos and Zeus botnets. This time they are targeting a different one called Nitol.
In this latest action, there were over 500 different varieties of the malware discovered in illegal copies of Windows operating systems. These computers were for sale in Chinese retail markets.
According to a study done by Microsoft, 20% of the computers they inspected in the Chinese market were infected. Where and when the malware is loaded into the computers is uncertain, as the supply chain for these computers is not monitored securely.
You can read more on the story at The Verge.
As a followup, more information on this story can be seen at Ars Technica. It seems the 500 varieties of malware were on the domain hosting the Nitol botnet. Only a few were found on the computers themselves. Sorry for any confusion.
