NetNut cracked as Google and FBI target 2 million-device botnet


Tech companies working with US law enforcement “significantly degraded” the NetNut residential proxy network as part of an ongoing effort to disrupt the tools cybercriminals use to conceal their activity, say researchers.

The work was carried out by Google, Lumen, Shadowserver, the FBI, and others, and marks a continuation of the IPIDEA proxy network disruption from January.

According to Google Cloud, those working on the operation believe NetNut was among the most popular residential proxy network providers and had at least 2 million devices enrolled in its botnet, comprising mainly small TV-streaming hardware. Crims often use residential proxy networks to make it look like their traffic is actually coming from legit homes and businesses.

Read more…
Source:  The Register


Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox


Related:

  • UK’s HMRC tax authority seeks tools to track down cryptocurrency criminals

    January 31, 2020

    The UK’s Her Majesty’s Revenue and Customs (HMRC) tax collection agency is asking for a blockchain analytics tool useful in the hunt for cybercriminals — and perhaps asset tax avoiders. In a project request posted last week, HMRC asked bidders to provide a tool that “will support intelligence-gathering methods to identify and cluster cryptoasset transactions into linked ...

  • Crime Cracking Technologies for the Dark Web

    January 19, 2020

    Anonymity is the real currency of the digital dark side and not just for the criminals. Organizations such as the U.S. Federal Bureau of Investigation’s (FBI) J-CODE, Europol’s EC3, the German Federal Criminal Police, La Police Nationale Française, and many others invest significant amounts of time and cash into technologies and methodologies used to break ...

  • FBI Says State Actors Hacked US Govt Network With Pulse VPN Flaw

    January 17, 2020

    FBI said in a flash security alert that nation-state actors have breached the networks of a US municipal government and a US financial entity by exploiting a critical vulnerability affecting Pulse Secure VPN servers. The US Cybersecurity and Infrastructure Security Agency (CISA) previously alerted organizations on January 10 to patch their Pulse Secure VPN servers against ongoing attacks trying to exploit the ...

  • WeLeakInfo.com Domain Name Seized

    January 16, 2020

    The Federal Bureau of Investigation and the U.S. Department of Justice announced that they have seized the internet domain name weleakinfo.com.  The announcement was made by U.S. Attorney Jessie K. Liu of the District of Columbia and Special Agent in Charge Timothy M. Dunham of the FBI’s Washington Field Office. The website had claimed to provide ...

  • FBI Warns of Maze Ransomware Focusing on U.S. Companies

    January 3, 2020

    Organizations in the private sector received an alert from the F.B.I. about operators of the Maze ransomware focusing on companies in the U.S. to encrypt information on their systems after stealing it first. The warning came less than a week after the Bureau warned about the LockerGoga and MegaCortex ransomware threats infecting corporate systems. Maze has been operating since ...

  • New Year Honours: Government faces multi-million pound compensation bill over leaked private details

    December 29, 2019

    The Government is facing fines and a compensation bill running into millions of pounds after the disclosure of the home addresses of counter-terrorism experts, senior police officers and celebrities on the new year honours list. Senior figures demanded an exhaustive inquiry into the circumstances which led to the personal details of more than 1,000 individuals who will ...