NetNut cracked as Google and FBI target 2 million-device botnet


Tech companies working with US law enforcement “significantly degraded” the NetNut residential proxy network as part of an ongoing effort to disrupt the tools cybercriminals use to conceal their activity, say researchers.

The work was carried out by Google, Lumen, Shadowserver, the FBI, and others, and marks a continuation of the IPIDEA proxy network disruption from January.

According to Google Cloud, those working on the operation believe NetNut was among the most popular residential proxy network providers and had at least 2 million devices enrolled in its botnet, comprising mainly small TV-streaming hardware. Crims often use residential proxy networks to make it look like their traffic is actually coming from legit homes and businesses.

Read more…
Source:  The Register


Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox


Related:

  • Interpol: We can’t arrest our way out of cybercrime

    April 29, 2022

    As cybercriminals become more sophisticated and their attacks more destructive and costly, private security firms and law enforcement need to work together, according to Interpol’s Doug Witschi. It’s tough to argue with either of these two statements. But considering the constant barrage of ransomware-attack headlines, as well as politicians’ calls for more public-private threat intelligence sharing, ...

  • UK: Met Police is planning to root out corruption with use of ‘sophisticated’ new technology that monitors officers’ phones and computers

    April 25, 2022

    The Met Police will root out rogue officers with ‘sophisticated’ new technology that can monitor officers’ emails and work phones for ‘alarming’ words in a bid to stamp out its culture of sexism and racism. The software will also track their movements while in a police station and even monitor tasks like photocopying – as replicating ...

  • UK: Police anti-terror IT system was ‘not fit for purpose’ – former officer

    April 13, 2022

    A key intelligence database used by police to investigate extremists was “not fit for purpose” when introduced in 2014, a former counter-terrorism officer has told the BBC. The officer, who retired in 2018, says the National Common Intelligence Application (NCIA) had serious flaws. Counter Terrorism Policing says “substantial improvements” were made following a significant review after terror ...

  • Global operation takes down hackers’ leaked data market

    April 12, 2022

    Western law enforcement agencies have dismantled an online marketplace used to buy and sell hacked and stolen personal data belonging to millions of people, and have charged the platform’s founder and chief administrator, officials announced Tuesday. Authorities say the RaidForums website trafficked in hundreds of databases of sensitive data, including credit card and Social Security numbers ...

  • FIN7 hacking group member sentenced to five years behind bars

    April 8, 2022

    A Ukrainian national has been sentenced as a member of the FIN7 hacking group. On Thursday, the US Department of Justice (DoJ) announced the sentencing of Denys Iarmak to five years in prison for working as a FIN7 penetration tester. FIN7, also known as Carbanak, is a prolific cybercriminal group that focuses on financial theft. Active since ...

  • DoJ takes down Russian botnet that targeted WatchGuard and Asus routers

    April 6, 2022

    The US Justice Department in March carried out an operation that successfully removed malware known as “Cyclops Blink” from vulnerable internet-connected firewall devices, the department announced Wednesday. The operation disrupted the control the Russian Federation’s Main Intelligence Directorate (GRU) had over a global botnet of thousands of infected devices. The Cyclops Blink Malware specifically targeted WatchGuard ...