Saturday, June 14, 2025
HomeComputer SecurityRussian Hacker Who Operated Kelihos Botnet Pleads Guilty in US Federal Court

Russian Hacker Who Operated Kelihos Botnet Pleads Guilty in US Federal Court

Published on

SIEM as a Service

Follow Us on Google News

A Russian man who operates Kelihos Botnet Pleads in U.S. Federal Court to Fraud, Conspiracy, Computer Crime and Identity Theft Offenses.

Peter Levashov operated the botnet for decades to facilitate the malicious activities such as credentials harvesting, bulk spam e-mails, Delivering ransomware and other malware’s.

U.S. Attorney Durham said, “Mr. Levashov used the Kelihos botnet to distribute thousands of spam e-mails, harvest login credentials, and install malicious software on computers around the world.” He also participated in online forums to sell the stolen identities such as credit card information and another cybercrime tool.

- Advertisement - Google News

Kelihos Botnet

The Kelihos botnet first appeared in December 2010, it is also known as a peer-to-peer botnet, it empowers every individual node to go about as a Command and Control server.

The first version of the botnet performed denial-of-service attacks and email spam, with the later version threat actors, added ability to steal Bitcoin wallets to mine cryptocurrencies.

Peter Levashov was arrested on April 7, 2017, in Barcelona by Spanish authorities based on the complaint and arrest warrant issued by the U.S District Court. At the time of arrest, Kelihos had at least 50,000 computers in botnet chain.

“Levashov lived quite comfortably while his criminal behavior disrupted the lives of thousands of computer users and today justice has finally arrived for Peter Levashov,” said FBI Special Agent in Charge Turner.

Levashov pleaded guilty before U.S. District Judge Robert N. Chatigny for damage to a protected computer, one count of conspiracy, one count of wire fraud and one count of aggravated identity theft. He is due to be sentenced on 6-Sept-2019 reads DoJ press release.

Related Read

Raise of IoT Botnets Responsible for Massive DDoS Attacks – Q2 2018 Threat Report

Android Based Malicious CryptoMiner Spreading by Worm that has Infected more than 5,000 devices in 24 hours

Ursnif Malware Variant Performs Malicious Process Injection in Memory using TLS Anti-Analysis Evasion Trick

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Kali Linux 2025.2 Released: New Tools, Smartwatch and Car Hacking Added

Kali Linux, the preferred distribution for security professionals, has launched its second major release...

Arsen Launches AI-Powered Vishing Simulation to Help Organizations Combat Voice Phishing at Scale

Arsen, the cybersecurity startup known for defending organizations against social engineering threats, has announced...

NIST Releases New Guide – 19 Strategies for Building Zero Trust Architectures

The National Institute of Standards and Technology (NIST) has released groundbreaking guidance to help...

Spring Framework Flaw Enables Remote File Disclosure via “Content‑Disposition” Header

A medium-severity reflected file download (RFD) vulnerability (CVE-2025-41234) in VMware's Spring Framework has been...

Credential Abuse: 15-Min Attack Simulation

Credential Abuse Unmasked

Credential abuse is #1 attack vector in web and API breaches today (Verizon DBIR 2025). Join our live, 15-min attack simulation with Karthik Krishnamoorthy (CTO - Indusface) and Phani Deepak Akella (VP of Marketing - Indusface) to see hackers move from first probe to full account takeover.

Discussion points


Username & email enumeration – how a stray status-code reveals valid accounts.
Password spraying – low-and-slow guesses that evade basic lockouts.
Credential stuffing – lightning-fast reuse of breach combos at scale.
MFA / session-token bypass – sliding past second factors with stolen cookies.

More like this

Bitwarden Flaw Allows Upload of Malicious PDFs, Posing Security RiskBitwardenBitwarden Flaw Allows Upload of Malicious PDFs, Posing Security Risk

A serious security vulnerability has been identified in Bitwarden, the popular password management platform,...

INDOHAXSEC Hacker Group Allegedly Breaches Malaysia’s National Tuberculosis Registry

The Indonesian hacker group "INDOHAXSEC" has allegedly breached the National Tuberculosis Registry (NTBR) of...

Is this Website Safe: How to Check Website Safety – 2025

is this website safe? In this digital world, Check a website is safe is...