Home → News → U.S. Disrupts Prolific Botnet Controlled by Russian... → Full Text

U.S. Disrupts Prolific Botnet Controlled by Russian Military

By The Record

April 7, 2022

[article image]

U.S. Attorney General Merrick Garland announced Wednesday that U.S. officials have disrupted a global botnet of thousands of infected devices allegedly controlled by the Russian military. 

Garland said the court-authorized operation was directed at Sandworm—a cyber-unit of the GRU Russian military intelligence service—and Cyclops Blink, an advanced modular botnet linked to the group.

In a statement, the Justice Department said the operation "copied and removed malware from vulnerable internet-connected firewall devices that Sandworm used for command and control (C2) of the underlying botnet."

"Although the operation did not involve access to the Sandworm malware on the thousands of underlying victim devices worldwide, referred to as 'bots,' the disabling of the C2 mechanism severed those bots from the Sandworm C2 devices' control," the Justice Department explained.

From The Record
View Full Article



No entries found