Warning: Undefined array key "HTTP_ACCEPT_LANGUAGE" in /home/u596154002/domains/usbusinessreviews.com/public_html/wp-includes/load.php on line 2057

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the rank-math domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/u596154002/domains/usbusinessreviews.com/public_html/wp-includes/functions.php on line 6114
DoJ takes down Russian botnet that targeted WatchGuard and Asus routers - Best Business Review Site 2024

DoJ takes down Russian botnet that targeted WatchGuard and Asus routers

[ad_1]

The US Justice Department in March carried out an operation that successfully removed malware known as “Cyclops Blink” from vulnerable internet-connected firewall devices, the department announced Wednesday. The operation disrupted the control the Russian Federation’s Main Intelligence Directorate (GRU) had over a global botnet of thousands of infected devices.

The Cyclops Blink Malware specifically targeted WatchGuard and Asus network devices. A threat actor known as Sandworm (which the US government previously attributed to the GRU) used the malware for command and control of the underlying botnet. By disabling the command and control mechanism, the Justice Department was able to sever Sandworm from the network of bots. 

However, WatchGuard and ASUS devices that acted as bots may remain vulnerable to Sandworm if device owners do not take the remediation steps advised by WatchGuard and ASUS, the Justice Department warned. 

Various DOJ agencies, as well as the US National Security Agency and the UK’s National Cyber Security Centre, first released an advisory on Feb. 23 identifying the Cyclops Blink malware. The advisory explained that the malware appeared to have emerged as early as June 2019, as the apparent successor to another Sandworm botnet the DOJ took down in 2018. 

The same day as the advisory, WatchGuard released detection and remediation tools for users of WatchGuard devices.  Later, ASUS released its own guidance to help compromised ASUS device owners. However, by mid-March, a majority of the originally compromised devices remained infected. 

The DOJ’s subsequent operation removed the malware from all the remaining identified command-and-control devices. The operation used direct communications with the Sandworm malware. Other than collecting the underlying command-and-control devices’ serial numbers through an automated script and copying the malware, the DOJ did not search for or collect information from the relevant victim networks, the department said. Furthermore, the operation didn’t involve any FBI communications with bot devices.

The DOJ operation demonstrated “the department’s commitment to disrupt nation-state hacking using all of the legal tools at our disposal,” Assistant Attorney General Matthew G. Olsen said in a statement. “By working closely with WatchGuard and other government agencies in this country and the United Kingdom to analyze the malware and to develop detection and remediation tools, we are together showing the strength that public-private partnership brings to our country’s cybersecurity. “

[ad_2]

Source link

slot gacor slot gacor togel macau slot hoki bandar togel slot dana slot mahjong link slot link slot777 slot gampang maxwin slot hoki slot mahjong slot maxwin slot mpo slot777 slot toto slot toto situs toto toto slot situs toto situs toto situs toto situs toto slot88 toto slot slot gacor thailand slot bet receh situs toto situs toto slot toto slot situs toto situs toto situs toto situs togel macau toto slot slot demo slot pulsa slot pragmatic situs toto deposit dana 10k surga slot toto slot link situs toto situs toto slot situs toto situs toto slot777 slot gacor situs toto slot slot pulsa 10k toto togel situs toto slot situs toto slot gacor terpercaya slot dana slot gacor pay4d agen sbobet kedai168 kedai168 deposit pulsa situs toto slot pulsa situs toto slot pulsa situs toto situs toto situs toto slot dana toto slot situs toto slot pulsa toto slot situs toto slot pulsa situs toto situs toto situs toto toto slot toto slot slot toto akun pro maxwin situs toto slot gacor maxwin slot gacor maxwin situs toto slot slot depo 10k toto slot toto slot situs toto situs toto toto slot toto slot toto slot toto togel slot toto togel situs toto situs toto toto slot slot gacor slot gacor slot gacor situs toto situs toto cytotec toto slot situs toto situs toto toto slot situs toto situs toto slot gacor maxwin slot gacor maxwin link slot 10k slot gacor maxwin slot gacor slot pulsa situs slot 10k slot 10k toto slot toto slot situs toto situs toto situs toto bandar togel 4d toto slot toto slot