this post was submitted on 30 Aug 2023
156 points (99.4% liked)

Technology

58115 readers
3932 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world
156
FBI operation tricked thousands of computers infected by Qakbot into uninstalling the malware (techcrunch.com)
submitted 1 year ago by L4s@lemmy.world to c/technology@lemmy.world
9 comments fedilink hide all child comments
 

FBI operation tricked thousands of computers infected by Qakbot into uninstalling the malware::The U.S. government dismantled the infrastructure of the notorious Qakbot malware, which caused millions of dollars of damage.

you are viewing a single comment's thread
view the rest of the comments
[–] RedditWanderer@lemmy.world 50 points 1 year ago (4 children)

Tldr bot cut out the best part:

To dismantle the botnet, the FBI gained lawful access to Qakbot’s infrastructure and redirected Qakbot traffic to FBI-controlled servers, which instructed infected computers to download an uninstaller file. This uninstaller was created by law enforcement to untether the victims’ computers from the Qakbot botnet, preventing further installation of malware through Qakbot.

During this operation, named “Operation Duck Hunt,” the FBI said it recovered the stolen credentials — including email addresses and passwords — of more than 6.5 million victims, adding that its international partners identified “millions more.”

The FBI also announced the seizure of 52 servers, which it said would “permanently dismantle” the botnet.

[–] amp@sh.itjust.works 26 points 1 year ago (1 children)

I'm sure they quitely deleted those stolen credentials afterwards...

[–] RedditWanderer@lemmy.world 19 points 1 year ago

Legally obtained sounds like they subpoena'd someone's password to get in

load more comments (2 replies)