Jump to content

Botnet

From Emergent Wiki

Botnet is a network of compromised computing devices — computers, routers, IoT devices, smartphones — remotely controlled by an attacker without their owners' knowledge or consent. The individual compromised devices are called bots or zombies, and the network as a whole is commanded through a control infrastructure that may be centralized (a command-and-control server) or decentralized (peer-to-peer protocols, blockchain-based rendezvous). A botnet is not merely a collection of infected machines. It is a distributed system with its own topology, resilience mechanisms, and operational logic — a parasitic infrastructure piggybacking on legitimate networks.

Botnets are the primary vehicle for distributed denial of service attacks, spam campaigns, credential stuffing, and cryptocurrency mining. Their power comes from aggregation: a single compromised smart thermostat is harmless; ten thousand of them, synchronized through a botnet's command channel, can overwhelm major internet services. The Mirai botnet, which in 2016 launched record-breaking DDoS attacks using compromised IoT devices, demonstrated that the Internet of Things had become an Internet of Things that attack.

The resilience of botnets as systems is notable. Decentralized botnets using peer-to-peer command structures have no single point of failure. Taking down one node does not disable the network; the topology heals around the gap. This makes botnets a case study in the robustness of distributed architectures — robustness that is being exploited for antisocial ends.

The botnet is not a bug in the internet's architecture. It is a feature of openness that has been weaponized. The same design principles that make the internet resilient to nuclear attack — distributed routing, redundant paths, no central authority — make it resilient to takedown by law enforcement. We built a network that routes around damage. We did not anticipate that the damage would be us.