Skip to main content

FBI tackles Coreflood botnet infecting 2.3 million PCs

botnet
Image used with permission by copyright holder

The Department of Justice and FBI have scored a big victory against a major international cyber theft ring suspected of stealing more than $100 million.

The thieves used malware called Coreflood to form a network of 2.3 million remotely controlled zombie pcs, also known as a botnet. The botnet snagged banking credentials and other sensitive data, which was used to steal large amounts of funds through wire and bank fraud. The botnet’s growth spans over a decade.

More than half of those computers were located within the United States, though the culprits are thought to be from overseas, possibly Russia, according to the director of research at the SAN institute, Alan Paller. A Michigan real estate company and North Carolina investment company both lost over $100,000, but the extent of how widespread the losses are isn’t fully known yet due to the large quantity of data stolen.

The Coreflood botnet was taken down by U.S. government programmers yesterday. The Department of Justice and the FBI took control of five servers used for botnet command, and also seized 29 domains. Government programmers instructed the infected PCs to stop what they were doing and shut down.

Those worried about their own infection have little recourse but to wait it out. Government officials are working with service providers to determine which computers have been infected. The FBI and Department of Justice have stated law enforcement has no authority to access data on infected computers once identified.

This Coreflood botnet comes at the heels of the slightly larger Rustock botnet – said to be responsible for close to half of the global spam – gone silent in March.

Jeff Hughes
Former Digital Trends Contributor
I'm a SF Bay Area-based writer/ninja that loves anything geek, tech, comic, social media or gaming-related.
This new patch improves Ryzen 9000 latency by over 50%
The Ryzen 9 9950X socketed in a motherboard.

A new BIOS update brings a much-needed fix for some of AMD's best processors. Since the launch of Ryzen 9000 over a month ago, some users and reviewers alike noticed that the core-to-core latency on these CPUs was significantly higher than on the last-gen Ryzen 7000. Trying new firmware proves that AMD addressed this issue, reducing latency by over 50% in some cases.

The problems affect inter-CCD (core complex die) latency, which refers to how quickly instructions can be transferred between two CCDs. CPUs that have more than one CCD, such as the Ryzen 9 9950X or the Ryzen 9 9900X, were suffering from really high inter-CCD latencies that were twice as high as those on their Ryzen 7000 counterparts. The latency sometimes surpassed 200 nanoseconds when data was being sent from one CCD to another.

Read more
Don’t trust that Google sign-in — how hackers are swiping passwords in Chrome
Google Chrome browser running on Android Automotive in a car.

Hackers are swiping passwords from Google accounts in Chrome, and it can happen from the official Google sign-in page. The vehicle being used is called the AutoIt Credential Flusher, and it was discovered by the researchers at OALabs. The attack locks you into your browser at the Google sign-in page and doesn't allow you to leave, all while logging your email and password as you sign into your Google account.

The attack leverages "kiosk mode" in Chrome, which is a limited full-screen interface that doesn't have elements like the address bar or navigation buttons. It's used mainly for demonstration purposes -- think a laptop on display at Best Buy. And this attack is using kiosk mode to annoy users enough that they give up their passwords. It also blocks some normal commands to exit full-screen mode, such as Esc and F11. 

Read more
This app promises to prevent OLED burn-in, but don’t fall for it
An OLED display with burn-in.

If you want to strike fear into the heart of any OLED monitor owner, just mention "burn-in." Although OLED displays have quickly infiltrated the ranks of the best gaming monitors, burn-in remains the key concern for adopting the display tech. A new app, called OLED Guard Pro, says it can prevent burn-in, resulting in "longer screen life, reduced power bills, and a viewing experience that feels fresh every day."

I use an OLED monitor daily, my trusty KTC G42P5, so I downloaded OLED Guard Pro to see if it would finally put my admittedly small burn-in fears to rest. And although the app works mostly as advertised, I'm skeptical that it will actually prevent image retention in the way the app claims.
Meet OLED Guard Pro

Read more