Tuesday, November 24, 07:59
Home security Microsoft: Declared 94% of TrickBot C&C servers down!

Microsoft: Declared 94% of TrickBot C&C servers down!

Last week, companies cyber security led by Microsoft joined forces to suppress TrickBot, one of the largest malware botnets and cybercrime businesses that exist today in the landscape of threats. Even though Microsoft destroyed the TrickBot infrastructure in the early days, the botnet survived and its operators brought new command-and-control-servers (C&C) to the Internet to continue their business.

However, several cybersecurity sources told ZDNet that they were expecting a TrickBot counterattack, while Microsoft promised to continue its cyber-threatening operation in the coming weeks. In an update released yesterday on the crackdown, Microsoft confirmed a second wave of TrickBot crackdowns.

Microsoft: Declared 94% of TrickBot botnet C&C servers shut down!

Microsoft said it had shut down 94% of botnet C&C servers, including the original servers and new ones brought to the Internet by its operators after the first attempt to crash. In particular, the technology giant reported that from the moment it launched its operation until October 18, it shut down 120 of the 128 servers it recognized as Trickbot infrastructure worldwide.

The eight servers that could not be removed last week were classified as Internet of Things (IoT) Appliances. The reason these systems they could not be destroyed immediately was that they were not located in web hosting companies and data centers, while it was not possible to communicate with device owners through "e-mail abuse ”. Additional coordination was needed with local ISPs, but Microsoft said it was currently working to turn off these devices.

Microsoft: Declared 94% of TrickBot botnet C&C servers shut down!

According to the cybersecurity company Intel 471, the "remnants" of TrickBot are found in Brazil, Colombia, Indonesia and Kyrgyzstan.

Microsoft has said it cannot say how long TrickBot will survive, but intends to "chase" its infrastructure at least until November 3, when the presidential election will take place. elections of USA. Tom Burt, CVP for Microsoft Security and Customer Trust, says the company is trying to prevent TrickBot from renting access on infected computers, on ransomware gangs, something the TrickBot botnet team is known to have done in the past.

US 2020 elections

In addition, Microsoft has expressed concern that a ransomware attack may disrupt electoral systems - either directly by encrypting election-related infrastructure directly or indirectly by affecting election-related supply chains.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Pohackontas
Pohackontashttps://www.secnews.gr
Every accomplishment starts with the decision to try.

LIVE NEWS

Details of Spotify users were exposed by hackers

A hacking team has gained unauthorized access to 350.000 Spotify accounts on the music streaming service. To achieve this ...

Black Friday: Tips for Secure Online Shopping

Black Friday and Cyber ​​Monday are two of the busiest days for online shopping. And of course ...

Photoshop: How to restore the old mode of Free Transform

Adobe recently changed the way Free Transform works. But you can restore the old way of working ...
00:02:56

EU: Ready to end end-to-end encryption?

End-to-end encryption is a security tool used by various applications, including Facebook Messenger, WhatsApp and Signal, for further ...

How to disable the "welcome tips" after the Windows 10 update

Windows 10 after an update sometimes opens a window with tips to show you what's new for ...

The Windows 10 KB4586819 update fixes several issues

Microsoft has released the cumulative non-security update KB4586819 preview for Windows 10 versions 1809, 1903 and 1909, with various fixes ...

Drupal websites are vulnerable to double-extension attacks!

The team behind Drupal Content Management System (CMS) released some security updates this week to fix a critical ...

Face recognition can identify bears and cows

Face recognition can be used to identify various animals such as bears and cows!

Google Workspace: How it unlocked the subscription software market

In fact, Google has made it easier for smaller players. A startup that starts in 2020 ...

Black Friday with online offers in COSMOTE and GERMANO

Press Release: Black Friday with online offers at COSMOTE and GERMANO November 23, 2020