[ISN] Court order cripples Coreflood botnet, says FBI

From: InfoSec News <alerts_at_private>
Date: Wed, 27 Apr 2011 02:51:43 -0500 (CDT)
http://www.computerworld.com/s/article/9216190/Court_order_cripples_Coreflood_botnet_says_FBI

By Gregg Keizer
Computerworld
April 26, 2011

Although the Federal Bureau of Investigation (FBI) said a federal 
temporary restraining order has crippled the Coreflood botnet in the 
U.S., Microsoft today took the unusual step of pushing a second version 
of its monthly malware cleaner to Windows users to again quash the 
botnet.

Coreflood made the news earlier this month when the U.S. Department of 
Justice (DOJ) and FBI obtained an unprecedented temporary restraining 
order that allowed them to seize command-and-control servers that 
managed the botnet's estimated 2.3 million compromised PCs.

Those servers were replaced by government-controlled systems.

The court order also allowed the DOJ and FBI to issue commands using 
those replacement servers that disabled, but did not uninstall, 
Coreflood on infected PCs that asked for new commands.

In an affidavit filed in a Connecticut federal court last Saturday, FBI 
Special Agent Briana Neumiller said that the server seizure and 
"kill-switch" instructions issued to the malware have crippled the 
botnet.

[...]


___________________________________________________________      
Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery 
Network, Cisco Switches, SAS 70 Type II Datacenter. 
Find peace of mind, Defend your Critical Infrastructure.
http://www.tegataiphoenix.com/
Received on Wed Apr 27 2011 - 00:51:43 PDT

This archive was generated by hypermail 2.2.0 : Wed Apr 27 2011 - 01:00:28 PDT