WASHINGTON: Google said Tuesday it has moved to shut down a network of about one million hijacked electronic devices used worldwide to commit online crimes, while also suing Russia-based hackers the tech giant claimed were responsible.
The so-called botnet of infected devices, which was also used to surreptitiously mine bitcoin, was cut off at least for now from the people wielding it on the Internet.
“The operators of Glupteba are likely to attempt to regain control of the botnet using a backup command and control mechanism,” wrote Shane Huntley and Luca Nagy from Google’s threat analysis group.
Large technology companies like Google and Microsoft are increasingly pulled into the battle against cybercrime, which is conducted via their products thus giving them unique understanding of and access to the threats.
Google said the network includes about one million Windows-using devices worldwide for crimes that include stealing users’ credentials, and has targeted victims from the United States, India, Brazil and southeast Asia.
The company also filed a lawsuit in a New York federal court against Dmitry Starovikov and Alexander Filippov seeking an injunction to block them from wrongdoing on its platforms.
Cybersecurity experts first noticed Glupteba in 2011, which spreads by masquerading as free, downloadable software, videos or movies that people unwittingly download onto their devices.
However, unlike conventional botnets that rely on predetermined channels to ensure their survival, Glupteba is programmed to find a replacement server in order to keep operating even after being attacked, says Google’s lawsuit.
Because the botnet web combines the power of some one million devices it possesses unusual power that could be used for large-scale ransomware or other attacks.
To maintain that network, the organization “uses Google advertisements to post job openings for the websites” carrying out the illegal work.
The hackers also used Google’s own services to distribute the malware — the Internet giant took down some 63 million Google Docs and terminated over 1,100 Google accounts used to spread Glupteba.
The botnets can “recover more quickly from disruptions, making them that much harder to shutdown. We are working closely with industry and government as we combat this type of behavior,” Google said in a blog post.
Google disrupts cybercrime web infecting 1 million devices
https://arab.news/bqwm4
Google disrupts cybercrime web infecting 1 million devices
- Google said the network includes about one million Windows-using devices worldwide for crimes that include stealing users’ credentials, and has targeted victims from the United States, India, Brazil and southeast Asia
Western media refute Trump’s claims Iran possesses Tomahawk missiles
- Speaking to journalists, Trump suggested Tehran used US-made cruise missile in school attack that killed over 170, calling the weapon ‘very generic’
- CNN, Sky News and analysts said that ‘neither Israel nor Iran use Tomahawk missiles,’ urged accurate identification to ensure credibility in public discourse
LONDON: Western media outlets and defense analysts have pushed back against claims by US President Donald Trump that Iran possesses Tomahawk cruise missiles, after he raised the possibility while discussing a recent strike on an Iranian school that has drawn international scrutiny.
Speaking to reporters on Monday, Trump suggested Iran may have used Tomahawks in the attack, calling the weapon “very generic” and implying that multiple countries, including Iran, could have access to the system.
However, journalists and weapons experts swiftly disputed that assertion. They noted that Tomahawk missiles are US-manufactured cruise missile systems that Washington supplies only to a small number of close allies, primarily the UK and Australia. There is no credible evidence that Iran has ever obtained the weapon.
CNN anchor Erin Burnett referenced an investigation by correspondent Isobel Yeong that concluded “neither Israel nor Iran use Tomahawk missiles, according to experts.” Sky News and other Western outlets also challenged Trump’s remarks.
Analysts pointed out that Iran has developed its own domestic cruise missile systems, such as the Soumar and Hoveyzeh, which are believed to be based partly on older Soviet-era designs.
While these systems resemble cruise missiles in concept, experts say they differ significantly from the Tomahawk in design, propulsion configuration and operational characteristics.
While Iran has made substantial advances in ballistic and domestically produced cruise missiles over the past two decades, defense analysts said there is no verified evidence that Tehran holds the American-made system.
The episode reflects a broader pattern in which statements about military technology are rapidly scrutinized by open-source investigators and defense experts.
Experts say the distinction is important: accurately identifying the type of missile used in a strike can provide clues about the likely actor responsible, the launch platform involved and the broader geopolitical consequences of a strike.
Analysts also say that accurate identification of military systems remains essential for avoiding misinformation and for maintaining credibility in public discourse surrounding regional security.
Despite the growing body of evidence, the precise circumstances of the school attack nonetheless remain unclear, with investigators hampered by a lack of weapons fragments and limited access to the site.
Norway-based rights group Hengaw said the school was holding its morning session at the time of the reported attack and had at least 168 children and 14 teachers.
Trump said the US was continuing to investigate the incident. “Whatever the report shows, I’m willing to live with that report,” he said.
