Dutch authorities have cracked down on a large-scale botnet operation known as Ebury, which had evolved to steal cryptocurrency wallets and credit card details in recent years.
Ebury's Dark Journey:
Rise and Fall (2009-2021): Ebury, dubbed the "most sophisticated Linux backdoor ever seen" by cybersecurity experts, infected hundreds of thousands of servers globally, generating millions for its operators. After a key figure's arrest in 2014, the network appeared dormant.
Resurgence and Expansion (Late 2021): Dutch police discovered Ebury's re-emergence during a cryptocurrency theft investigation. The botnet had grown significantly, targeting universities, businesses, and even crypto traders.
Ebury's New Tricks:
Shifting Targets: Ebury had diversified its attacks, leveraging stolen server access to steal Bitcoin and Ethereum wallets.
Man-in-the-Middle Attacks: The botnet intercepted network traffic to steal login credentials and session information for crypto wallets.
Spoofing and Obfuscation: Ebury hijacked compromised servers to impersonate legitimate targets, further complicating investigations.
Dutch Police and ESET Collaboration:
Unraveling the Web: The Dutch National High Tech Crime Unit (NHTCU) partnered with cybersecurity firm ESET to analyze Ebury's tactics and trace its operations.
Challenges and Red Herrings: Ebury operators used stolen identities and mimicked known criminals to throw investigators off track.
The Case Continues:
Active Investigation: Despite the complexities, the NHTCU has identified promising leads and continues its pursuit of the masterminds behind Ebury.
ESET's Role: ESET researcher Marc-Etienne Léveillé, who has investigated Ebury for over a decade, remains vigilant for future developments.
Disclaimer: This article is intended for informational purposes only and should not be considered financial advice. Please consult with a professional before making any investment decisions.
#Cybercrime #Cryptocurrency #Botnet #Ebury #ESET #NHTCU #CryptoTheft #DarkWeb #meowdininews #mdinicoin
Source:Newshitb
Comentários