Collective and coordinated action Microsoft and an unspecified number of partners in 35 countries around the world to put an end to the action of one of the largest Botnet Active Necurs, New, capable of infecting more than nine million computers globally. This took a total of eight years of monitoring and planning.
Necurs: The botnet has been dismantled
The announcement with a post shared on the official blog of Redmond’s group. According to the company, managers will no longer be able to leverage the infrastructure or the tools used to score their Attacks.
A botnet, for those who do not know about it, is a set of computers infected with malicious code that allows Cybercriminals remotely and exploit its resources at will. In this case, the first evidence of its existence dates back to 2012. Many techniques used for its proliferation included the GameOver Zeus network that has been talked about often in recent years.
According to the Microsoft report, a single computer compromised by Necurs’ action was able to send about 3.8 million emails Spam less than two months. In addition to this, the network’s nodes have unknowingly taken part in pump and dump scams related to the stock market, the distribution of advertising for the sale of fake pharmaceuticals, the organization of bogus meetings (dating), attacks DDoS, cryptomining campaigns and the spread of ransomware. Add identity theft, confidential information, and credentials to access online service accounts so you have the full picture.
Its managers should be located Russia. To understand how structured such criminal activity is, it is sufficient to mention that the authors of the network have created a business through which to make fractions available to third parties, subject to payment.
On March 5, Microsoft obtained permission from the U.S. District Court for the Eastern District of New York to take control of the U.S. infrastructure employed by Necurs, so as to permanently stop its operation, even if it were to take control of the U.S. infrastructure. working with ISPs, register to authorities around the world through the Cyber Threat Intelligence Program.
At the end of its intervention, the company reports the possibility of using the free Safety Scanner tool for an analysis of its computer in search of any Malware.
Available for Windows, does not replace solutions in any case Antivirus real-time protection.