Difference between revisions of "Esthost taken down - Biggest cybercriminal takedown in history"
Jump to navigation
Jump to search
m (1 revision imported) |
m (Text replacement - "DNS Changer" to "DNSChanger") |
||
Line 17: | Line 17: | ||
In this operation, dubbed “[[Operation Ghost Click]]” by the FBI, two data centers in New York City and Chicago were raided and a command & control (C&C) infrastructure consisting of more than 100 servers was taken offline. At the same time the Estonian police arrested several members in Tartu, Estonia. Here is the link to [[International_cyber_ring_that_infected_millions_of_computers_dismantled|the press release of the FBI]]. | In this operation, dubbed “[[Operation Ghost Click]]” by the FBI, two data centers in New York City and Chicago were raided and a command & control (C&C) infrastructure consisting of more than 100 servers was taken offline. At the same time the Estonian police arrested several members in Tartu, Estonia. Here is the link to [[International_cyber_ring_that_infected_millions_of_computers_dismantled|the press release of the FBI]]. | ||
|Botnet=Esthost, | |Botnet=Esthost, | ||
|Malware= | |Malware=DNSChanger, | ||
|CCProtocol=DNS, | |CCProtocol=DNS, | ||
|Operation=Operation Ghost Click, | |Operation=Operation Ghost Click, | ||
}} | }} |
Revision as of 13:39, 31 July 2015
(Publication) Google search: [1]
Esthost taken down - Biggest cybercriminal takedown in history | |
---|---|
Botnet | Esthost |
Malware | DNSChanger |
Botnet/malware group | |
Exploit kits | |
Services | |
Feature | |
Distribution vector | |
Target | |
Origin | |
Campaign | |
Operation/Working group | Operation Ghost Click |
Vulnerability | |
CCProtocol | DNS |
Date | 2011 / 9th Nov 2011 |
Editor/Conference | Trend Micro |
Link | http://blog.trendmicro.com/?p=38093 blog.trendmicro.com (blog.trendmicro.com Archive copy) |
Author | Feike Hacquebord |
Type |
Abstract
“ On November 8, a long-living botnet of more than 4,000,000 bots was taken down by the FBI and Estonian police in cooperation with Trend Micro and a number of other industry partners.
In this operation, dubbed “Operation Ghost Click” by the FBI, two data centers in New York City and Chicago were raided and a command & control (C&C) infrastructure consisting of more than 100 servers was taken offline. At the same time the Estonian police arrested several members in Tartu, Estonia. Here is the link to the press release of the FBI.
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2011BFR870, editor = {Trend Micro}, author = {Feike Hacquebord}, title = {Esthost taken down - Biggest cybercriminal takedown in history}, date = {09}, month = Nov, year = {2011}, howpublished = {\url{http://blog.trendmicro.com/?p=38093 blog.trendmicro.com}}, }