News

FBI takes down massive global army of zombie computer devices

THE US FBI said it has dismantled what is likely the world’s largest botnet – an army of 19 million infected computers – that was leased to hackers for cybercrimes.

The botnet, which was spread across more than 190 countries, enabled financial fraud, identity theft and access to child exploitation materials around the world, according to a statement issued on Wednesday (May 29) by FBI director Christopher Wray. Other violations tied to the botnet included bomb threats and cyberattacks, likely leading to billions of US dollars in victim losses, according to a statement from the Department of Justice.

The botnet was tied to more than 613,000 IP addresses located in the US, authorities said. Botnets are created when cybercriminals install malware on computers or other connected devices and harness them for nefarious activities, creating a zombie army of devices whose owners are usually unaware of what is happening.

Law enforcement seized Internet equipment and assets, and levied sanctions against the alleged administrator of the botnet, YunHe Wang, as well as co-conspirators, Wray said.

Wang, a Chinese citizen, was arrested in Singapore on May 24, charged in connection with allegedly deploying malware and creating and operating a residential proxy service known as “911 S5.” It was started in 2014 and relied on a network of millions of compromised residential Windows computers, according to the US government. Wang then generated millions of US dollars by offering cybercriminals access to these infected IP addresses for a fee, according to the Department of Justice.

The US is now awaiting extradition, according to Brett Leatherman, deputy assistant director with the FBI’s Cyber Division. “We want him, you know, as soon as possible,” Leatherman told reporters in a call on Wednesday.

GET BT IN YOUR INBOX DAILY

Start and end each day with the latest news stories and analyses delivered straight to your inbox.

The FBI and international partners also executed multiple search warrants and interviews in Singapore and Thailand that could lead to additional arrests, he added.

The law enforcement operation, named Operation Tunnel Rat, also seized luxury goods including expensive cars and watches worth US$4 million, as well as more than US$29 million in cryptocurrency and about US$30 million in real estate in Singapore, Thailand, Dubai and elsewhere, plus 22 domains, officials said.

Residential IP addresses became compromised when users downloaded certain free software or virtual private network apps, which unknowingly contained malware associated with the botnet onto their devices, Leatherman said. The FBI has issued a Web page where members of the public can check if their IP address was among those compromised. BLOOMBERG

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button