Law Enforcement Take Down Botnets Exploiting IoT Devices for DDoS Attacks
Global law enforcement dismantled four major botnets infecting over 3 million devices, used for DDoS attacks and cybercrime. Operation highlights rising IoT security risks, weak password threats, and need for stronger cybersecurity protection.
Tech Author
A significant global cybercrime operation has effectively dismantled four risky botnets that had infected millions of devices globally. Law enforcement agencies from the United States, Germany, and Canada worked together to shut down the networks that were responsible for large-scale cyberattacks.
According to officials, the botnets named Aisuru, KimWolf, JackSkid, and Mossad had infected over 3 million devices worldwide. The majority of these devices were part of the Internet of Things (IoT), including webcams, routers, and digital video recorders. Many users were not aware that their devices had been compromised. Devices with weak passwords or old software were particularly vulnerable to these attacks.
These botnets were mostly used to perform Distributed Denial-of-Service (DDoS) attacks, which flood websites and servers with traffic and cause them to fail. Some of the targets even included systems connected to the United States Department of Defense, emphasizing the gravity of the danger. In several cases, attackers demanded money from victims, making the attacks both disruptive and financially damaging.
Law enforcement teams searched locations in Germany and Canada, seizing data storage devices and cryptocurrency worth thousands of dollars. This demonstrates that cybercriminals not only create harm but also make money from illicit actions.
One of the botnets, KimWolf, also served as a residential proxy network. This means that attackers enabled others to use compromised devices to conceal their identities online. These services were rented out for money without the knowledge of the device's owners.
The operation was supported by major technological corporations such as Amazon Web Services, Google, PayPal, and Nokia, as well as Europol's cybercrime team. This emphasizes the necessity of international cooperation in combating cyber threats.
This case is a strong reminder that even everyday devices can be used in cyberattacks without the owner knowing. Users should always use strong passwords, keep devices updated and avoid using unsecured networks. Simple security steps can help prevent devices from becoming part of cybercrime networks.
This article is based on information from Reuters
