Friday, March 29, 2024

Deadly Mirai and Qbot-based DDoS Botnet Creator Jailed for 13 months

Kenneth Currin Schuchman, who is also known as Nexus Zeta from Vancouver, Canada, is the creator of deadly Mirai and Qbot-based botnet, has sentenced to 13 months in prison for hiring and promoting the Mirai and Qbot-based DDoS botnets utilized in DDoS attacks against targets from all over the world. 

Rather than Mirai, Kenneth Currin Schuchman also operated the Satori, Okiru, Masuta, and Tsunami/Fbot botnets, and these were published to the United States Probation and Pretrial Services on September 3, 2019.

He was sentenced on Thursday by the U.S. District Court of Alaska, where the Department of Justice stated that Schuchman is involved in criminal botnet projects since August 2017, and he controlled them with his two partners “Vamp” and “Drake” to execute the Satori botnet more complicated and powerful over time. 

The Department of Justice asserted that Schuchman botnets are considered to have affected hundreds of thousands of devices along with malware. According to the DoJ’s press, Schuchman attached additional characteristics to the botnets over time, with the motive of making them “complex and effective.” 

But, the Doj also affirmed that the defendant used the botnets to expedite DDoS attacks, which occur when lots of computers were working in the community; he targeted the systems with the data to obstruct them from being able to access the internet.

The botnet Satori did extensive damages, and its repetitions would be unleashed in record-setting DDoS attacks. Well, this attack dominated more than 800,000 devices, which contain home routers, security cameras, webcams, also crushed ISPs, online gaming programs, and different web hosting companies as well.

According to the special agent in charge, Robert W. Britt of the FBI’s Anchorage Field Office affirmed that the Cyber-attacks profess serious harm to Alaskans, especially to those who belong to the remote communities. 

The officer also claimed that the increasing number of Internet-connected devices giving open challenges to their network security and also their daily lives. Consequently, the FBI Anchorage Field Office will continue to work tirelessly with their partners to grab those criminals who utilize these devices to cause damages globally.

In January, Schuchman joined Mirai and Satori botnet elements to increase the size of the bot army and concentrated on exploiting devices from Vietnam. While in March 2018, the group additionally enhanced the botnet, and renamed it as Tsunami/Fbot and outlining to target security camera devices, gaming servers, and High Silicon DVR systems. 

Moreover, the botnet was able to launch attacks surpassing 100 Gbps. The court declared in one of its statements that, in April 2018, the defense built a Qbot-derived DDoS botnet, straight fighting for customers with his former associate, Vamp.

After all this Schuchman was first interviewed in July 2018 by the FBI, well, he was operating with Vamp and Drake to enhance their active range of DDoS botnets.

But, this whole investigation was carried out by the FBI’s Anchorage Field Office with support from Akamai, Cloudflare, Google, Oracle, Palo Alto Unit 42, Unit 221B, and the University of Cambridge.

You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity updates

Website

Latest articles

IT and security Leaders Feel Ill-Equipped to Handle Emerging Threats: New Survey

A comprehensive survey conducted by Keeper Security, in partnership with TrendCandy Research, has shed...

How to Analyse .NET Malware? – Reverse Engineering Snake Keylogger

Utilizing sandbox analysis for behavioral, network, and process examination provides a foundation for reverse...

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

GoPlus Labs, the leading Web3 security infrastructure provider, has unveiled a groundbreaking report highlighting...

Wireshark 4.2.4 Released: What’s New!

Wireshark stands as the undisputed leader, offering unparalleled tools for troubleshooting, analysis, development, and...

Zoom Unveils AI-Powered All-In-One AI Work Workplace

Zoom has taken a monumental leap forward by introducing Zoom Workplace, an all-encompassing AI-powered...

iPhone Users Beware! Darcula Phishing Service Attacking Via iMessage

Phishing allows hackers to exploit human vulnerabilities and trick users into revealing sensitive information...
Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Mitigating Vulnerability Types & 0-day Threats

Mitigating Vulnerability & 0-day Threats

Alert Fatigue that helps no one as security teams need to triage 100s of vulnerabilities.

  • The problem of vulnerability fatigue today
  • Difference between CVSS-specific vulnerability vs risk-based vulnerability
  • Evaluating vulnerabilities based on the business impact/risk
  • Automation to reduce alert fatigue and enhance security posture significantly

Related Articles