Global Crackdown Dismantles Major Botnets Targeting Millions Of Devices
Law enforcement agencies across the United States, Germany and Canada have dismantled infrastructure linked to four major botnets that infected more than three million devices worldwide. Authorities confirmed that the coordinated operation targeted networks used to launch widespread cyber attacks. As a result, the action marks a significant step in disrupting large scale digital threats.
The U.S. Department of Justice stated that the botnets, identified as Aisuru, KimWolf, JackSkid and Mossad, had been used to conduct distributed denial of service attacks. Some of these attacks targeted systems linked to the Department of Defense. Therefore, the takedown aimed to protect critical infrastructure from ongoing disruption.
German police confirmed that investigators identified two suspected administrators connected to the botnets. Subsequently, authorities carried out searches at their residences in Germany and Canada. During these operations, officials seized extensive evidence, including multiple data storage devices and cryptocurrencies worth tens of thousands of dollars.
Millions Of Devices Exploited Through Weak Security
Most of the infected devices belonged to the Internet of Things, including webcams, digital video recorders and Wi Fi routers. These devices often lack strong security protections. Consequently, attackers exploited them without the knowledge of their owners.
Authorities explained that weak passwords and outdated software made many devices vulnerable. As a result, botnet operators gained control and used them to carry out hundreds of thousands of attacks. In some cases, the attackers demanded payments from victims in exchange for stopping the disruptions.
German police also revealed that parts of the KimWolf botnet had been rented out as a residential proxy network. This allowed third parties to route their activity through infected devices for a fee. Therefore, users unknowingly became part of a wider anonymisation system.
Coordinated Effort Targets Cybercrime Networks
The operation involved close cooperation between international law enforcement agencies and major technology companies. Nearly two dozen firms supported the effort, helping to identify and dismantle the malicious infrastructure. This collaboration strengthened the overall effectiveness of the crackdown.
The European law enforcement initiative focused on countering cybercrime also contributed to the operation. Its ongoing efforts since 2017 have targeted networks responsible for denial of service attacks. Consequently, the latest action builds on years of coordinated enforcement.
Officials emphasised that disrupting these botnets demonstrates a continued commitment to tackling evolving cyber threats. By removing key infrastructure, authorities aim to reduce the ability of attackers to target critical systems and organisations.
With inputs from Reuters