A lot of Russians just went byebye - FBI Seizes Control of Russian Botnet

Toggle sidebar Toggle sidebar
UberNeuman

UberNeuman

Lifer
Nov 4, 1999
16,937
3,087
126
The FBI operation targets a piece of sophisticated malware linked to the same Russian hacking group that hit the Democratic National Committee in 2016.

FBI agents armed with a court order have seized control of a key server in the Kremlin’s global botnet of 500,000 hacked routers, The Daily Beast has learned. The move positions the bureau to build a comprehensive list of victims of the attack, and short-circuits Moscow’s ability to reinfect its targets.

The FBI counter-operation goes after “VPN Filter,” a piece of sophisticated malware linked to the same Russian hacking group, known as Fancy Bear, that breached the Democratic National Committee and the Hillary Clinton campaign during the 2016 election. On Wednesday security researchers at Cisco and Symantec separately provided new details on the malware, which has turned up in 54 countries including the United States.

https://www.thedailybeast.com/exclu...medium=website&utm_content=link&ICID=ref_fark

-----------

well, how about that? http://dashboard.securingdemocracy.org/ has an overview of Twitter traffic and this is quite interesting since the seizing of that botnet:
fark_9_Jrxiz_ESu_UW7r_JK_j0k_BKi_HZOgc.png
 
Last edited:
M

MixMasterTang

Diamond Member
Jul 23, 2001
3,167
176
106
Interesting but I don't think any "servers" were seized, but rather a domain name.

For those who want the TLDR:
"Kremlin’s global botnet of 500,000 hacked routers"
"“VPN Filter,” a piece of sophisticated malware linked to the same Russian hacking group"
"VPN Filter uses known vulnerabilities to infect home office routers made by Linksys, MikroTik, NETGEAR, and TP-Link"
..."an order directing the domain registration firm Verisign to hand the ToKnowAll[.]com address over to the FBI"
"The move effectively kills the malware’s ability to reactivate following a reboot"
 
UberNeuman

UberNeuman

Lifer
Nov 4, 1999
16,937
3,087
126
MixMasterTang said:
Interesting but I don't think any "servers" were seized, but rather a domain name.

For those who want the TLDR:
"Kremlin’s global botnet of 500,000 hacked routers"
"“VPN Filter,” a piece of sophisticated malware linked to the same Russian hacking group"
"VPN Filter uses known vulnerabilities to infect home office routers made by Linksys, MikroTik, NETGEAR, and TP-Link"
..."an order directing the domain registration firm Verisign to hand the ToKnowAll[.]com address over to the FBI"
"The move effectively kills the malware’s ability to reactivate following a reboot"
Click to expand...

"FBI agents armed with a court order have seized control of a key server in the Kremlin’s global botnet of 500,000 hacked routers"
 
trenchfoot

trenchfoot

Lifer
Aug 5, 2000
15,457
7,980
136
Trump must be absolutely livid about this given how he despises our intelligence services.
 
dank69

dank69

Lifer
Oct 6, 2009
36,914
32,060
136
UberNeuman said:
The FBI operation targets a piece of sophisticated malware linked to the same Russian hacking group that hit the Democratic National Committee in 2016.

FBI agents armed with a court order have seized control of a key server in the Kremlin’s global botnet of 500,000 hacked routers, The Daily Beast has learned. The move positions the bureau to build a comprehensive list of victims of the attack, and short-circuits Moscow’s ability to reinfect its targets.

The FBI counter-operation goes after “VPN Filter,” a piece of sophisticated malware linked to the same Russian hacking group, known as Fancy Bear, that breached the Democratic National Committee and the Hillary Clinton campaign during the 2016 election. On Wednesday security researchers at Cisco and Symantec separately provided new details on the malware, which has turned up in 54 countries including the United States.

https://www.thedailybeast.com/exclu...medium=website&utm_content=link&ICID=ref_fark

-----------

well, how about that? http://dashboard.securingdemocracy.org/ has an overview of Twitter traffic and this is quite interesting since the seizing of that botnet:
fark_9_Jrxiz_ESu_UW7r_JK_j0k_BKi_HZOgc.png
Click to expand...
Today is the 24th, the numbers are still rising. Up to 8000 already.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom