zombie

Typically, a zombie is a home-based PC whose owner is unaware that the computer is being exploited by an external party. The increasing prevalence of high speed connections makes home computers appealing targets for attack. Inadequate security measures make access relatively easy for an attacker. For example, if an Internet port has been left open, a small Trojan horse program can be left there for future activation.

There are a few other kinds of zombies:
In one form of denial of service attack, a zombie is an insecure Web server on which malicious people have placed code that, when triggered at the same time as other zombie servers, will launch an overwhelming number of requests toward an attacked Web site, which will soon be unable to service legitimate requests from its users. A pulsing zombie is one that launches requests intermittently rather than all at once.

On the Web, a zombie is an abandoned and sadly out-of-date Web site that for some reason has been moved to another Web address. Such zombies contribute to linkrot.

In the Unix operating system world, developers sometimes use the term to refer to a program process that has died but hasn't yet given its process table entry back to the system.

The term originated in the West Indies, where a zombie is a will-less, automaton-like person who is said to have been revived from the dead and must now do the will of the living.

Read more about zombie: - Zombies are the most prevalent threat to Windows PCs, according to a 2006 Microsoft report. - PacketStorm Security describes a product that can tell a zombie system flooding packets to stop flooding. - Michael Cobb writes about 'How to secure desktops as suites expand, network perimeters shrink.' - Ed Skoudis discusses the benefits of moving data from a corrupted workstation to a forensics laptop.

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Three ways to prioritize endpoint security over perimeter defenses Midmarket organizations should prioritize endpoint security management over perimeter defenses. Examining Conficker: When a worm becomes a botnet Conficker may be backed by a well funded group or government intending to silently collect information. Though the hype has waned, Conficker could... Stolen FTP credentials likely in latest website attacks The latest website attack techniques use stolen user credentials instead of website vulnerabilities to crack websites and spread malware.

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary email virus  (SearchMidmarketSecurity.com) keylogger  (SearchMidmarketSecurity.com) A keylogger, sometimes called a keystroke logger, key logger, or system monitor, is a hardware device or small program that monitors each keystroke a...