Microsoft Shuts Down Necurs Botnet
Microsoft, in collaboration with its industry partners worldwide, announced Tuesday it has taken legal and technical action to take down the infamous Necurs Botnet, one of the biggest spam email and malware distributors to date.
In a blog post, the tech giant announced it has “significantly disrupted” Necurs after eight-long years of tracking and planning. On March 5, with a U.S. court order, Microsoft was able to take control of US-based infrastructure used by Necurs authors to send out new orders and distribute malware.
According to Tom Burt, Corporate Vice President, Customer Security & Trust, this effort, led by Microsoft, along with the help of public-private partnerships worldwide, will prevent criminals behind Necurs from registering new domains to launch future attacks.
This was accomplished by analyzing a technique used by Necurs to systematically generate new domains through an algorithm. We were then able to accurately predict over six million unique domains that would be created in the next 25 months,” Burt explained.
“Microsoft reported these domains to their respective registries in countries around the world so the websites can be blocked and thus prevented from becoming part of the Necurs infrastructure. By taking control of existing websites and inhibiting the ability to register new ones, we have significantly disrupted the botnet.”
Discovered in 2012, Necurs stands as one of the largest spam botnets known to date, infecting over 9 million computers worldwide. Since its discovery, the botnet has been used by attackers in a number of criminal schemes, including in spam email campaigns and in malware strains distribution. At the course of the investigation, Microsoft discovered that one Necurs-infected computer could send about 3.8 million spam emails to over 40.6 million potential victims within a 58-day period.
To date, the tech company said it is working closely in collaboration with Internet Service Providers (ISPs) and other partners around the world to clear their customers’ computers of malware linked to the Necurs botnet.
“This remediation effort is global in scale and involves collaboration with partners in industry, government and law enforcement via the Microsoft Cyber Threat Intelligence Program (CTIP),” added the post. “Through CTIP, Microsoft provides law enforcement, government Computer Emergency Response Teams (CERTs), ISPs and government agencies responsible for the enforcement of cyber laws and the protection of critical infrastructure with better insights into criminal cyber infrastructure located within their jurisdiction, as well as a view of compromised computers and victims impacted by such criminal infrastructure.”
\\
Xbox Series X: Specs Released by Microsoft - 8-Core ZEN and 3328 shader processors GPU - 03/16/2020 04:13 PM
The next generation of Xbox is defined by three primary characteristics: Power, Speed and Compatibility. Microsoft now shared all specification on their blog, and they are pretty impressive....
Ubisoft and Microsoft announce E3 2020 conferences will become digital conferences - 03/12/2020 08:38 AM
3 2020 was canceled due to the coronavirus outbreak, now Microsoft and Ubisoft announced that they would still reveal the planned news, only through digital events....
Microsoft Windows 10 KB4535996, users with issues should uninstall - 03/10/2020 10:08 AM
Microsoft confirms there is a problem with the KB4535996 update that it released at the end of February. The company admitted the problem a couple of days ago, a few days after users started complaini...
Advertorial: Microsoft Office 2016 for Only $29.03 and Good deals on CDKoffers - 02/28/2020 11:31 AM
CDKoffers.com is a trading platform for virtual services that provides its users with high-quality services of online games, software and all kinds of virtual goods. Now, it’s easy, comfortable and ...
Microsoft talks Xbox Series X Specs - 12 TFLOPs - H/W Accelerated Raytracing - HDMI 2.1 - 02/24/2020 08:34 PM
Microsoft just posted an interesting post on their blog, they talk more on the Xbox Series X and if you dig in a bit closer, you'll notice some pretty hot keywords including 120 frames per second ga...
Senior Member
Posts: 1457
Joined: 2014-04-21
That's sounds quite something. I guess only micro soft actually have the tech knowhow and recourses to be able to police like that and thankfully a private persecution avenue is available.
I hope botnet get taken down.
Senior Member
Posts: 1949
Joined: 2012-04-30
still looks like a bandaid after you cut yourself, rather than sharpening the knife to prevent it in the first place.
windows pushes its crappy FW on all network connections, yet did not prevent things like this at all.
Senior Member
Posts: 746
Joined: 2011-03-23
If they don't get the people behind it. I fear a similar botnet will be created, but with another name and with a new domain algorithm.
Since apparently there is to much money to be made and if they don't get them, then why would they stop.
Senior Member
Posts: 223
Joined: 2015-09-26
WTH? Why is a corporation playing police???? What is next? google "officials" arresting people? xD
Senior Member
Posts: 5872
Joined: 2004-01-28
Sounds good to me.