Zombie Computer
What is Zombie Computer?
Zombie ComputerAn internet-connected device secretly compromised by malware so an attacker can remotely command it, typically as part of a botnet.
A zombie computer is a host that has been infected with malicious code allowing a remote operator to issue commands without the owner's knowledge. Once enrolled, the device receives instructions from a command-and-control (C2) channel and can be used to send spam, mine cryptocurrency, host phishing kits, launch DDoS attacks, or pivot deeper into networks. Zombies are typically created through phishing, drive-by downloads, exposed services, or weak credentials, and they may stay dormant for long periods to evade detection. Defences include endpoint protection, prompt patching, egress filtering, DNS monitoring for C2 domains, and isolating or reimaging infected systems.
● Examples
- 01
A home router conscripted into the Mirai botnet to flood a target with traffic.
- 02
An office workstation quietly relaying spam after a malicious macro executed.
● Frequently asked questions
What is Zombie Computer?
An internet-connected device secretly compromised by malware so an attacker can remotely command it, typically as part of a botnet. It belongs to the Malware category of cybersecurity.
What does Zombie Computer mean?
An internet-connected device secretly compromised by malware so an attacker can remotely command it, typically as part of a botnet.
How do you defend against Zombie Computer?
Defences for Zombie Computer typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Zombie Computer?
Common alternative names include: Bot, Drone.