New Orchard Botnet Uses Bitcoin Founder’s Account Info to Generate Malicious Domains

  • Thread starter Ravie Lakshmanan
  • Start date

Ravie Lakshmanan

A new botnet named Orchard has been observed using Bitcoin creator Satoshi Nakamoto's account transaction information to generate domain names to conceal its command-and-control (C2) infrastructure. "Because of the uncertainty of Bitcoin transactions, this technique is more unpredictable than using the common time-generated [domain generation algorithms], and thus more difficult to defend

Continue reading...