The Wall Street Journal: FBI moves to dismantle huge botnet before cyberattack is launched

0
158
views

The Federal Bureau of Investigation moved to dismantle a large network of hacked routers and storage devices that Cisco Systems Inc. and U.S. and Ukraine authorities said could be used to launch a massive cyberattack or knock hundreds of thousands of internet users offline.

The FBI said late Wednesday that it has seized control of the internet domain that was used by the computer network’s “command and control” server to issue instructions to infected devices. The agency said it has begun an effort to clean up the estimated half-million infected devices.

Read: Cisco’s Talos unit warns that half a million routers are networked for a cyberattack

That effort will take some time, security researchers say. Researchers and Ukranian authorities warned earlier that the network could be used by Russia to launch an attack timed to the final match in soccer’s UEFA Champions League competition taking place Saturday in Kiev.

The hacked devices, which span 54 countries, are infected with sophisticated software called VPNFilter that can install other software or even internal changes that render the devices unusable, according to Craig Williams, a security researcher with Cisco CSCO, +0.07%  .

An expanded version of this report appears on WSJ.com.

Also popular on WSJ.com:

Fate of 12 North Korea waitresses strains Moon-Kim detente.

Apple avoids Amazon’s beauty contest, searches secretly for new campus.