Andromeda botnet shut down2017-12-05 15:10 by Daniela
A major botnet, which incorporated millions of PCs and is associated with over 80 different malware families, has been taken down in an international cyber-operation.
Cybersecurity agents from a combination of the Europol's European Cybercrime Centre, the FBI, EuroJust and the Joint Cybercrime Action Task force, alongside help from a clutch of companies like Microsoft successfully killed the Andromeda botnet.
Jointly, the international partners took action against servers and domains, which were used to spread the Andromeda malware. Overall, 1500 domains of the malicious software were subject to sinkholing. According to Microsoft, during 48 hours of sinkholing, approximately 2 million unique Andromeda victim IP addresses from 223 countries were captured. The involved law enforcement authorities also executed the search and arrest of a suspect in Belarus.
The Andromeda malware family, also known as Gamarue, was created in September 2011 with the purpose of stealing credentials, and downloading and installing additional malware onto infected systems.
Read more -here-