Botnet Trend Report

Botnet Trend Report-5

July 17, 2019

3.3 Geographical Distribution

3.3.1 Behavior Seen

According to geographical analysis of IP addresses, 2018 saw most new C&C servers in the USA (30.64%), closely followed by China (29.79%). Other top C&C hosting countries include Canada, Russia, Germany, France, and Italy. (more…)

Botnet Trend Report-4

July 10, 2019

3.2 Family Activity

3.2.1 Behavior Seen

In 2018, a total of 35 active families were found to issue more than 100 botnet instructions, accounting for 24% of all known families. Several families with the highest level of instruction activity accounted for most of the malicious activities throughout 2018.


Botnet Trend Report-3

July 3, 2019

This chapter discusses various aspects of botnet behavior. Behavioral characteristics include activity level of botnets overall and per botnet family, DDoS attack characteristics, C&C server use and distribution, and geographical locations of attack victims.  Also discussed are characteristics of the most active botnet families themselves. (more…)

Botnet Trend Report-2

June 26, 2019

Botnets have evolved since 2017.  New active families and platforms have become dominant.  Attack types used have also changed. (more…)

Botnet Trend Report-1

June 18, 2019

Executive Summary

Botnets, one of the oldest threats on the internet, are still the most popular weapon in a hacker’s arsenal. They offer ease of use, flexibility, and high availability, traits ideal for launching large-scale lethal cyber-attacks ar-ound the world.