As the author stated, it's not that he wants to connect to these infected hosts, he wants to have leverage over the authorities. "If they give me shit, I'll release the master pass" ... as many hosts as there are that are infected with this, that would make a fairly decent sized Distributed Denial of Service network, under the control of whomever, and unless the person who uses the master password removes the malware, all of these computers could in theory be running many instances of DDoS utilities, from many different individuals who connected via the master password. I think he covered himself well, but if someone were to get this master pass, it would be very trivial to write a program to scan for these hosts, and automate the process of infection for DDoS. DDoS isn't the worst that could be done, but I don't want to give anyone any ideas that would do such things.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/8893/26790#26790