UPDATED 04:31 EDT / DECEMBER 02 2016

APPS

Global law enforcement agencies bring down Avalanche botnet network

A botnet network at one stage responsible for two-thirds of all phishing attacks globally has been brought down following a four-year investigation by global law enforcement agencies.

The Avalanche network is estimated to involve hundreds of thousands of infected computers worldwide. As part of the takedown, officials seized command and control servers and took control of more than 800,000 Internet domains used by the botnet which had been in operation in some form since 2009 and had spread at least 24 different malware variants.

Five individuals were arrested as part of the take down, with 37 premises being searched, 39 servers seized and 221 servers taken offline through abuse notifications sent to the hosting provider.

The network was brought down with the assistance of the Lüneburg Police in Germany in close cooperation with the United States Attorney’s Office for the Western District of Pennsylvania, the Department of Justice and the FBI, Europol, Eurojust and global partners, along with additional assistance from INTERPOL, the Shadowserver Foundation, Registrar of Last Resort, ICANN and multiple domain name registries.

 

Victims of malware infections spread by the Avalanche network have been identified in over 180 countries, a staggering figure given that there are only 195 countries in the world today, excluding Taiwan. Initially starting with fake bank emails, the network evolved other time to distribute a variety of phishing attacks including “police ransomware,” malware that spoofs a message from law enforcement claiming the victim’s system had been distributing illegal pornography, then demanding a ransom to unlock an infected computer.

“The Avalanche network, which has been operating since at least 2010, is estimated to involve hundreds of thousands of infected computers worldwide,” the Department of Justice said in a media release. “The monetary losses associated with malware attacks conducted over the Avalanche network are estimated to be in the hundreds of millions of dollars worldwide, although exact calculations are difficult due to the high number of malware families present on the network.”

The Justice Department added that there would be additional information on the dismantling of Avalanche provided early next week.

Image credit: Pixabay/Public Domain CC0

A message from John Furrier, co-founder of SiliconANGLE:

Your vote of support is important to us and it helps us keep the content FREE.

One click below supports our mission to provide free, deep, and relevant content.  

Join our community on YouTube

Join the community that includes more than 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.

“TheCUBE is an important partner to the industry. You guys really are a part of our events and we really appreciate you coming and I know people appreciate the content you create as well” – Andy Jassy

THANK YOU