Security News > 2024 > February > FBI disrupts Moobot botnet used by Russian military hackers
The FBI took down a botnet of small office/home office routers used by Russia's Main Intelligence Directorate of the General Staff in spearphishing and credential theft attacks targeting the United States and its allies.
Subsequently, the GRU hackers leveraged the Moobot malware to deploy their own custom malicious tools, effectively repurposing the botnet into a cyber espionage tool with global reach.
During a court-authorized operation, FBI agents remotely accessed the compromised routers and used the Moobot malware itself to delete stolen and malicious data and files.
Moobot is the second botnet used by state-sponsored hackers to evade detection disrupted by the FBI in 2024 after the takedown of the KV-botnet used by Chinese Volt Typhoon state hackers in January.
Russian military hackers target Ukraine with new MASEPIE malware.
FBI disrupts Chinese botnet by wiping malware from infected routers.
News URL
Related news
- Microsoft says Russian hackers breached its systems, accessed source code (source)
- Microsoft Confirms Russian Hackers Stole Source Code, Some Customer Secrets (source)
- Microsoft: Russian hackers accessed internal systems, code repositories (source)
- Russian Hackers May Have Targeted Ukrainian Telecoms with Upgraded 'AcidPour' Malware (source)
- Russian hackers target German political parties with WineLoader malware (source)
- Russian Hackers Use 'WINELOADER' Malware to Target German Political Parties (source)
- 10-Year-Old 'RUBYCARP' Romanian Hacker Group Surfaces with Botnet (source)
- RUBYCARP hackers linked to 10-year-old cryptomining botnet (source)
- Russian Sandworm hackers pose as hacktivists in water utility breaches (source)
- Germany cuffs alleged Russian spies over plot to bomb industrial and military targets (source)