General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region ForumsExclusive: FBI Seizes Control of Russian Botnet
The FBI operation targets a piece of sophisticated malware linked to the same Russian hacking group that hit the Democratic National Committee in 2016.
[link:https://www.thedailybeast.com/exclusive-fbi-seizes-control-of-russian-botnet?source=twitter&via=desktop|
rzemanfl
(29,557 posts)kimbutgar
(21,148 posts)iluvtennis
(19,858 posts)Wwcd
(6,288 posts)Kudos to FBI agents in Pittsburg, Federal Magistrate Judge Lenihan, and all involved in bringing this to the surface.
SNIP
"In addition, the victim allowed the FBI to utilize a network tap on her home network that allowed the FBI to observe the network traffic leaving the home router.
That allowed the bureau to identify a key weakness in the malware.
*If a victim reboots an infected router, the malicious plugins all disappear, and only the core malware code survives.
*That code is programmed to connect over the Internet to a command-and-control infrastructure set up by the hackers.
*First it checks for particular images hosted on Photobucket.com that held hidden information in the metadata.
*If it cant find those imageswhich have indeed been removed from Photobucketit turns to an emergency backup control point at the hard-coded web address ToKnowAll[.]com.
One plug-in lets the hackers eavesdrop on the victims Internet traffic;
another targets a protocol used in the electric grid. A third lets the attacker cripple any or all of the infected devices at will.
On Tuesday, FBI agents in Pittsburg asked federal Magistrate Judge Lisa Pupo Lenihan in Pittsburgh for an order directing the domain registration firm Verisign to hand the ToKnowAll[.]com address over to the FBI, in order to further the investigation, disrupt the ongoing criminal activity involving the establishment and use of the botnet, and assist in the remediation efforts, according to court records. Lenihan agreed,
bucolic_frolic
(43,161 posts)that all this spam that tried to get you to open and read and click was capable of implanting bits of code on your computer that could later be drawn together for unclear purposes. So someone' known about this for quite a while.
jberryhill
(62,444 posts)Qutzupalotl
(14,311 posts)One of the things that has been slowing down the Russia investigation is the threat of retaliation through these means. Now that pressures been taken off.
saidsimplesimon
(7,888 posts)putin's puppets.
Duppers
(28,120 posts)"U.S. Takes Down Russian Botnet Believed to Be Used in Election Hacking After Suspect Arrested in Spain"
April 10, 2017
http://fortune.com/2017/04/10/us-russian-kelihos-botnet/
I'm losing hope that ANYTHING we do will matter. We badly need different tactics.
Dialogue from Mississippi Burning:
"Anderson: These people are crawling out of the SEWER, MR. WARD! Maybe the gutter's where we outta be!"
Maraya1969
(22,480 posts)Our nation was attacked by Russia. Now, we are fighting back. It feels like a relief