Microsoft, the FBI, Agari, financial services industry leaders FS-ISAC, NACHA, and other industry partners, managed to break up a massive cybercrime ring which was stealing people’s online banking information and personal identities.
More than one thousand botnets, believed to be responsible for over half a billion US dollars in financial fraud and affecting more than five million people in 90 countries, were eliminated by the operation.
The investigation culminated June 5th with the seizure of key servers at two data hosting facilities in New Jersey and Pennsylvania, along with valuable data and evidence from the botnets.
Deemed as “one of the most highly sophisticated and organized cybercrime rings in existence today,” the cybercriminals employed more than one thousand botnets to infect computers with Citadel malware.
Once infected, the victim’s keystrokes were monitored and recorded, providing access to banking and other financial accounts leading to the theft of money and other personal information. As part of the FBI operation, communication has been cut off between 1,462 Citadel botnets and the millions of infected computers under their control.
“While we certainly celebrate today’s victory, we are once again reminded just how advanced these types of attacks have become and how potentially costly and damaging they truly are,” said Bill Nelson from FS-ISAC. “It underscores the need to be proactive in the ongoing battle against cybercriminals and to work together with partners like Agari to protect businesses and customers alike.”
Due to the size and complexity of the operation, the botnet threat has not been wiped out entirely, but it has been significantly disrupted, providing an opportunity to eliminate the malware from infected computers. Microsoft is working with Internet Service Providers and Computer Emergency Response Teams worldwide to quickly notify people with infected computers.