Coreflood Botnet Shut Down
The U.S. Department of Justice and FBI have disabled Coreflood, a decade-old botnet that’s infected more than 2 million private computers, by seizing and replacing five command and control servers and 29 domain names used by the botnet, the Department of Justice said in an April 13 press release.
Coreflood has compromised numerous victims’ bank accounts by stealing their user names, passwords and other personal financial information, the government said. The malware is designed to record keystrokes and control a victim’s computer remotely via one of its command and control servers.
The first-of-its-kind government move follows a major bust of account-raiding cyber thieves last fall in New York, who were arrested for using Zeus Trojan malware to steal at least $3 million from bank accounts.
"The actions announced today are part of a comprehensive effort by the department to disable an international botnet, while at the same time giving consumers the ability to take necessary steps to protect themselves from this harmful malware," Assistant Attorney General Lanny A. Breuer of the Criminal Division said in the statement.