As a result of a joint operation conducted by cybercrime teams from the US, Germany, and Canada, four major botnet networks—most notably Aisuru and Kimwolf, along with JackSkid and Mossad—controlling over 3 million devices globally have been successfully dismantled. This operation neutralized one of the most significant cyber threats in recent years while aiming to protect critical internet infrastructure worldwide.

Destruction of Command and Control (C2) Infrastructure Cybersecurity teams targeted the command and control (C2) servers managing these massive networks, completely eliminating their attack capabilities. German and US authorities emphasized that the high risk these botnets posed to the global IT infrastructure, due to their immense scale, was brought under control by shutting down these central servers.Targeted Devices and Home Networks Instead of traditional computers, the attackers focused on internet-connected (IoT) devices. While the Aisuru botnet hijacked millions of routers, DVRs, and webcams, the Kimwolf botnet primarily targeted Android TV boxes and smart home devices. Experts point out that even devices behind home routers are at risk of infiltration, being turned into a "zombie" army without the users' knowledge.

Record-Breaking DDoS Attacks These botnets shattered cybersecurity history records with the high-volume DDoS attacks they executed. The combined 31.4 terabit-per-second attack launched by Aisuru and Kimwolf lasted only 35 seconds but reached nearly three times the size of previous records. With this attack capacity, hundreds of thousands of targets worldwide, including the US Department of Defense Information Network, were taken offline.

Cybercrime Economy and Legal Proceedings It was determined that botnet operators did not use these networks solely for attacks; they also generated income by renting them out to other cybercriminals and, in some cases, attempted to extort their targets. As part of the operation, two suspects believed to be managing the networks were identified, and international legal proceedings have been initiated.

Next-Generation Threats and Future Warnings These dismantled systems are stated to be advanced derivatives of the infamous Mirai malware that emerged in 2016, capable of infiltrating home networks more effectively. Authorities warn that despite this successful operation, there is no such thing as an "absolute victory" in cybersecurity, and more advanced new botnets may emerge to replace the dismantled ones.

For detailed information, you can reach out to our experts at info@zerosecond.com.ae