We first reported on bots inside Fortune 1000 companies in late March. Since then, the Support Intellegence Project has identified more large corporations with botnet infections. The list has grown to include AIG, AFLAC, Bank of America, Conseco, Thomsen Finacial and 3M. Most of the companies ideitifeid have repordtedly found anf removed the bot infections. They also claim that no data has been compromised. But, how can they be sure?

If a bot can infect and send spam from a network, what is to stop it from logging keystrokes or stealing corporate data?