Google moves to shut down huge botnet

Glupteba botnet targets Windows devices and uses blockchain technology to protect itself

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Googlehas begun taking steps to shut down a sophisticatedbotnetwhich usesblockchaintechnology to protect itself and is being used to target Windows devices.

For those unfamiliar, a botnet is a network of devices connected to the internet that have been infected withmalwarethat places them under the control of cybercriminals and other bad actors. These infected devices are then used for malicious purposes such as stealing your sensitive information or committing fraud.

Following a thorough investigation, Google’s Threat Analysis Group determined that the botnet in question,Glupteba, has already infected one million compromised Windows devices worldwide and is capable of growing at a rate of thousands of new devices per day.

Glupteba is known for stealing users' credentials and data, mining cryptocurrencies on infected hosts and setting up proxies to funnel other people’s internet traffic through infected machines androuters.

Taking action against Glupteba

According to a newblog postfrom Google, the company is currently working with its industry partners likeCloudflareto take technical action against Glupteba and the bad actors behind this increasingly dangerous botnet.

So far, the search giant has disrupted key command and control infrastructure which means that Glupteba’s operators no longer have control of their botnet for now. However, as this botnet has sophisticated architecture and its operators have taken steps to maintain it, scale its operations and conduct widespread criminal activity, Google has also decided to take legal action as well.

The company filed litigation against the operators of Glupteba, which it believes are based in Russia, in the Southern District of New York for computer fraud and abuse, trademark infringement and other claims. Google has also filed a temporary restraining order to bolster its technical disruption efforts.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Still though, stopping Glupteba completely may prove difficult as thedecentralized nature of blockchainallows the botnet to recover more quickly form disruptions which makes it much harder to shutdown.

We’ve also rounded up thebest DDoS protection,best endpoint protection softwareandbest malware removal software

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home.

Phishing attacks surge in 2024 as cybercriminals adopt AI tools and multi-channel tactics

This new phishing strategy utilizes GitHub comments to distribute malware

Smeg Combi Steam Oven review: a multi-functional countertop oven that looks stunning and cooks well