Home Technology FBI ‘takes down’ botnet infecting more than 700,000 computers – Times of India

FBI ‘takes down’ botnet infecting more than 700,000 computers – Times of India

0
FBI ‘takes down’ botnet infecting more than 700,000 computers – Times of India

[ad_1]

Qakbot is a dangerous malware that made its way into over 700,000 computers across the world. According to the FBI, a multinational effort has taken down the malware that was infecting a wide network of computers. To take down the network Qakbot was routed through FBI-controlled servers.
In a blog post, the security agency explained how it instructed infected computers in the US and elsewhere to download software that uninstalled the Qakbot malware.The installer also separated infected computers from the botnet, “preventing further installation of malware through Qakbot.”
The US Department of Justice (DOJ) also noted the action was only restricted to the malware installed by Qakbot hackers and “did not extend to remediating other malware already installed on the victim computers.”
How this malware affected users
Hackers target victims by sending them spam emails containing attachments or links laden with this malware. Whenever victims click the link or download the attachment, Qakbot infects their computer. The system then becomes part of a botnet, which is a network of infected computers that are controlled remotely by hackers. After this, cybercriminals can install any malware on their victims’ devices, such as ransomware.
Operation Duck Hunt
Apart from the US operation, Europol and other security agencies from countries like France, Germany, the Netherlands, the UK, Romania and Latvia were also involved in a cybersecurity mission called Operation Duck Hunt for the same malware. As part of the latest operation, the DOJ seized $8.6 million worth of extorted funds in crypto.

The report said the botnet was responsible for hundreds of millions of dollars in damages and infected more than 200,000 computers in the US. Qakbot has been around since 2008 and has been used by multiple ransomware groups. This includes Conti, REvil, MegaCortex and more.
In a statement, US Attorney Martin Estrada said: “An international partnership led by the Justice Department and the FBI has resulted in the dismantling of Qakbot, one of the most notorious botnets ever, responsible for massive losses to victims around the world. Qakbot was the botnet of choice for some of the most infamous ransomware gangs, but we have now taken it out.”
The Have I Been Pwned website is showing the compromised credentials FBI found during the operation. This site allows users to enter their email to check if they were affected. The Dutch National Police has also added affected credentials discovered by them to its Check Your Hack site.



[ad_2]

Source link

LEAVE A REPLY

Please enter your comment!
Please enter your name here