US disables 'Coreflood' botnet, seizes servers

US authorities on Wednesday announced the disabling of a vast network of virus-infected computers used by cyber criminals to steal millions of dollars.

The "Coreflood" botnet is believed to have operated for nearly a decade and to have infected more than two million computers around the world, the Justice Department and FBI said in a joint statement.

They said charges of wire fraud, bank fraud and illegal interception of electronic communications had been filed against 13 suspects identified in court papers only as John Doe 1, John Doe 2, etc.

The complaint said they were all "foreign nationals" but provided no further information about their identities or nationalities.

Five "command and control" computer servers and 29 Internet domain names were seized as part of the operation, described as the "most complete and comprehensive enforcement action ever taken by US authorities to disable an international botnet."

A botnet is a network of malware-infected computers that can be controlled remotely from other computers.

Coreflood, which exploited a vulnerability in computers running Microsoft's Windows operating systems, was used to steal usernames, passwords and other private personal and financial information, US officials said.

As of February 2010, some 2.33 million computers were part of the Coreflood botnet, including 1.85 million in the United States, according to the complaint filed with the US District Court for the District of Connecticut.

"Infected computers in the Coreflood botnet automatically recorded the keystrokes and Internet communications of unsuspecting users, including online banking credentials and passwords," the complaint said.

"The defendants and their co-conspirators used the stolen data, including online banking credentials and passwords, to direct fraudulent wire transfers from the bank accounts of their victims," it added.

The complaint said the full extent of the financial loss is not known but it provided details on a number of victims.

They included a real estate company in Michigan hit for $115,771 in fraudulent wire transfers, an investment company in North Carolina taken for $151,201 and a defense contractor in Tennessee which lost $241,866.

Dave Marcus, research and communications director at McAfee Labs, said the cyber criminals behind Coreflood were apparently able to "turn the botnet into a money making machine."

"It is hard to estimate the actual loot, but the criminals likely made tens of millions of dollars, based on the estimates in the complaint filed by the Department of Justice," Marcus said. "It is not outside of the realm of possibility that they netted more than $100 million."

US attorney David Fein said the seizure of the Coreflood servers and the Internet domain names "is expected to prevent criminals from using Coreflood or computers infected by Coreflood for their nefarious purposes."

"These actions to mitigate the threat posed by the Coreflood botnet are the first of their kind in the United States and reflect our commitment to being creative and proactive in making the Internet more secure," added Shawn Henry of the FBI's Criminal, Cyber, Response and Services Branch.

In July of last year, US, Spanish and Slovenian law enforcement authorities announced the arrest of the suspected creator of the "Mariposa Botnet," which may have infected as many as eight million to 12 million computers around the world.

PROMOTED VIDEO
Life and Style
ebookNow available in paperback
Life and Style
ebooksA superb mix of recipes serving up the freshest of local produce in a delicious range of styles
Latest stories from i100
Have you tried new the Independent Digital Edition apps?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

ES Rentals

    iJobs Job Widget
    iJobs Gadgets & Tech

    h2 Recruit Ltd: Inside Sales Manager - Accountancy Software - £80,000 OTE

    £50000 - £60000 per annum + £80,000 OTE: h2 Recruit Ltd: London, Reading , Sou...

    Langley James : IT Support, Bradford £16k - £22k

    £16000 - £22000 per annum + Benefits: Langley James : IT Support, Bradford £16...

    Langley James : IT Sales Executive;Borehamwood;£40k(neg) uncapped comm£100k+OTE

    £40000 per annum + £100k+ OTE: Langley James : IT Sales Executive; connectivit...

    Recruitment Genius: DevOps Engineer

    £40000 - £50000 per annum: Recruitment Genius: A DevOps Engineer is required t...

    Day In a Page

    Homeless Veterans Christmas Appeal: Drifting and forgotten - turning lives around for ex-soldiers

    Homeless Veterans Christmas Appeal: Turning lives around for ex-soldiers

    Our partner charities help veterans on the brink – and get them back on their feet
    Putin’s far-right ambition: Think-tank reveals how Russian President is wooing – and funding – populist parties across Europe to gain influence in the EU

    Putin’s far-right ambition

    Think-tank reveals how Russian President is wooing – and funding – populist parties across Europe to gain influence in the EU
    Tove Jansson's Moominland: What was the inspiration for Finland's most famous family?

    Escape to Moominland

    What was the inspiration for Finland's most famous family?
    Nightclubbing with Richard Young: The story behind his latest book of celebrity photographs

    24-Hour party person

    Photographer Richard Young has been snapping celebrities at play for 40 years. As his latest book is released, he reveals that it wasn’t all fun and games
    Michelle Obama's school dinners: America’s children have a message for the First Lady

    A taste for rebellion

    US children have started an online protest against Michelle Obama’s drive for healthy school meals by posting photos of their lunches
    Colouring books for adults: How the French are going crazy for Crayolas

    Colouring books for adults

    How the French are going crazy for Crayolas
    Jack Thorne's play 'Hope': What would you do as a local politician faced with an impossible choice of cuts?

    What would you do as a local politician faced with an impossible choice of cuts?

    Playwright Jack Thorne's latest work 'Hope' poses the question to audiences
    Ed Harcourt on Romeo Beckham and life as a court composer at Burberry

    Call me Ed Mozart

    Paloma Faith, Lana del Ray... Romeo Beckham. Ed Harcourt has proved that he can write for them all. But it took a personal crisis to turn him from indie star to writer-for-hire
    10 best stocking fillers for foodies

    Festive treats: 10 best stocking fillers for foodies

    From boozy milk to wasabi, give the food-lover in your life some extra-special, unusual treats to wake up to on Christmas morning
    Phil Hughes head injury: He had one weakness – it has come back to haunt him

    Phil Hughes had one weakness – it has come back to haunt him

    Prolific opener had world at his feet until Harmison and Flintoff bounced him
    'I have an age of attraction that starts as low as four': How do you deal with a paedophile who has never committed a crime?

    'I am a paedophile'

    Is our approach to sex offenders helping to create more victims?
    How bad do you have to be to lose a Home Office contract?

    How bad do you have to be to lose a Home Office contract?

    Serco given Yarl’s Wood immigration contract despite ‘vast failings’
    Green Party on the march in Bristol: From a lost deposit to victory

    From a lost deposit to victory

    Green Party on the march in Bristol
    Putting the grot right into Santa's grotto

    Winter blunderlands

    Putting the grot into grotto
    'It just came to us, why not do it naked?' London's first nude free runner captured in breathtaking images across capital

    'It just came to us, why not do it naked?'

    London's first nude free runner captured in breathtaking images across capital