Dutch authorities have taken a significant step in the fight against cybercrime by disrupting a massive botnet consisting of 17 million infected devices. The operation, carried out by the Police in collaboration with the National Cyber Security Centre (NCSC), resulted in the seizure of over 200 servers at a local hosting provider.
Botnet Operation
The seized servers controlled a network of compromised devices, including computers, tablets, and smartphones, which were used to carry out cyberattacks such as distributed denial-of-service (DDoS) attacks, malicious traffic proxying, or cryptocurrency mining. According to the NCSC, the investigation revealed that the botnet consisted of at least 17 million infected devices.
Link to Asocks Service
Local media reports suggest that the botnet was linked to a service called Asocks, which advertises itself as a “universal proxy service” with 7 million IP addresses, 150 locations, and 100,000 clients. The platform offers corporate, residential, and mobile proxies for monthly subscriptions between $5 and $15, with discounts for bulk purchases. However, the NCSC’s action indicates that the owners of the devices that were part of the botnet did not knowingly participate in supporting cybercrime operations.
BleepingComputer has contacted Asocks with a request for a comment on the allegations, but no response has been received by publication time.
Protection Against Botnet Infections
To protect networking devices from botnet infections, it is essential to ensure that default credentials have been changed to something unique and strong, the latest firmware update has been applied, and remote administration panels are disabled when not needed.
The disruption of the botnet is a significant step in the fight against cybercrime, and it highlights the importance of collaboration between law enforcement agencies and cybersecurity organizations in combating these types of threats.
The NCSC’s action also raises awareness about the risks associated with botnets and the importance of protecting devices from infection. By taking steps to secure devices and networks, individuals and organizations can help prevent the spread of botnets and reduce the risk of cyberattacks.
Related Incidents
Recent incidents, such as the Gentlemen ransomware using SystemBC for bot-powered attacks, the Netherlands seizing 800 servers of a hosting firm enabling cyberattacks, and Russian hackers turning Kazuar backdoor into a modular P2P botnet, highlight the ongoing threat posed by botnets and the need for continued vigilance and cooperation in the fight against cybercrime.
As the threat landscape continues to evolve, it is essential to stay informed about the latest developments and to take proactive steps to protect against botnet infections and other types of cyber threats.
The disruption of the 17 million device botnet is a significant achievement, and it demonstrates the effectiveness of collaboration between law enforcement agencies and cybersecurity organizations in combating cybercrime.
By working together and sharing information, it is possible to disrupt and dismantle botnets, reducing the risk of cyberattacks and protecting individuals and organizations from the threats posed by these types of malicious networks.
The incident also highlights the importance of ongoing efforts to improve cybersecurity awareness and to educate individuals and organizations about the risks associated with botnets and other types of cyber threats.
By taking a proactive and collaborative approach to cybersecurity, it is possible to reduce the risk of botnet infections and other types of cyber threats, and to create a safer and more secure online environment.
In conclusion, the disruption of the 17 million device botnet is a significant achievement, and it demonstrates the effectiveness of collaboration between law enforcement agencies and cybersecurity organizations in combating cybercrime. It highlights the importance of ongoing efforts to improve cybersecurity awareness and to educate individuals and organizations about the risks associated with botnets and other types of cyber threats.
As the threat landscape continues to evolve, it is essential to stay informed about the latest developments and to take proactive steps to protect against botnet infections and other types of cyber threats. By working together and sharing information, it is possible to disrupt and dismantle botnets, reducing the risk of cyberattacks and protecting individuals and organizations from the threats posed by these types of malicious networks.
Source: BleepingComputer