Tech get Android botnet offline after cyber attacks
Several big tech have worked to set up an Android botnet offline. Through kwaardaardige software were tens of thousands of Android devices at the same time involved in cyber attacks.
Researchers from Google, Cloudflare, Akamai and several other organizations knew the botnet collectively offline.
A botnet is a collection of hijacked devices together on a single target can be sent off to servers to overwhelm with large amounts of traffic in a so-called DDoS-attack.
The WireX-botnet, as the researchers of this latest variant call, originated at the beginning of August and fell mainly on since a large-scale attack on 17 August. It is not known which sites or companies were victims of this attack.
In the last month were constant at least 70,000 and sometimes more than 100,000 unique devices active in the network. It turned out to go to Android devices that were infected with malware.
This malicious software was in the official Google Play Store, despite the scans that Google performs in order to prevent rogue apps appear. In total took Google about 300 apps with the malware from the healthcare app store.
Presumably, malware is used that was previously used for ‘click fraud’, where devices automatically click on ads to make money for the creators. The malware seems to have been rewritten to DDoS attacks.
Allison Nixon, head of screening for the American company Flashpoint, says to journalist Brian Krebs that cybersecuritybedrijven always better to work together to botnets offline. That happens, especially since the Mirai-botnet last year for chaos caused by major internet infrastructure offline.
“That has created a lot of cooperation,” says Nixon. “Different parties in the industry noticed, and some of us realized that we need to tackle. If we do not, then it becomes larger and spreads.”