ESET researchers have uncovered MSIL/Agent.PYO, botnet which targets Polish diplomatic mission in Belarus in the last couple of weeks. Distributed to computers located in Belarus using the Nuclear Exploit Kit, MSIL/Agent.PYO has redirected more than 200,000 computers to the botnet that fill out forms automatically for some Visa applicants at a Polish consulate in Belarus.
“We understand that obtaining an appointment for the visa can be quite difficult at times and thus special online process is set up to have the appointment confirmed,” says ESET researcher Sebastien Duquette adding: “Some people resorted to writing scripts to automate the process and apparently someone decided to go a step further and build a botnet specifically for the purpose of filling out the forms.”
Read more about MISL/Agent.PYO in the blog post on WeLiveSecurity.com.
Raphael Labaca Castro
Editor in Chief, We Live Security