Friday, March 29, 2024

Russian Hacker Who Operated Kelihos Botnet Pleads Guilty in US Federal Court

A Russian man who operates Kelihos Botnet Pleads in U.S. Federal Court to Fraud, Conspiracy, Computer Crime and Identity Theft Offenses.

Peter Levashov operated the botnet for decades to facilitate the malicious activities such as credentials harvesting, bulk spam e-mails, Delivering ransomware and other malware’s.

U.S. Attorney Durham said, “Mr. Levashov used the Kelihos botnet to distribute thousands of spam e-mails, harvest login credentials, and install malicious software on computers around the world.” He also participated in online forums to sell the stolen identities such as credit card information and another cybercrime tool.

Kelihos Botnet

The Kelihos botnet first appeared in December 2010, it is also known as a peer-to-peer botnet, it empowers every individual node to go about as a Command and Control server.

The first version of the botnet performed denial-of-service attacks and email spam, with the later version threat actors, added ability to steal Bitcoin wallets to mine cryptocurrencies.

Peter Levashov was arrested on April 7, 2017, in Barcelona by Spanish authorities based on the complaint and arrest warrant issued by the U.S District Court. At the time of arrest, Kelihos had at least 50,000 computers in botnet chain.

“Levashov lived quite comfortably while his criminal behavior disrupted the lives of thousands of computer users and today justice has finally arrived for Peter Levashov,” said FBI Special Agent in Charge Turner.

Levashov pleaded guilty before U.S. District Judge Robert N. Chatigny for damage to a protected computer, one count of conspiracy, one count of wire fraud and one count of aggravated identity theft. He is due to be sentenced on 6-Sept-2019 reads DoJ press release.

Related Read

Raise of IoT Botnets Responsible for Massive DDoS Attacks – Q2 2018 Threat Report

Android Based Malicious CryptoMiner Spreading by Worm that has Infected more than 5,000 devices in 24 hours

Ursnif Malware Variant Performs Malicious Process Injection in Memory using TLS Anti-Analysis Evasion Trick

Website

Latest articles

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

GoPlus Labs, the leading Web3 security infrastructure provider, has unveiled a groundbreaking report highlighting...

Wireshark 4.2.4 Released: What’s New!

Wireshark stands as the undisputed leader, offering unparalleled tools for troubleshooting, analysis, development, and...

Zoom Unveils AI-Powered All-In-One AI Work Workplace

Zoom has taken a monumental leap forward by introducing Zoom Workplace, an all-encompassing AI-powered...

iPhone Users Beware! Darcula Phishing Service Attacking Via iMessage

Phishing allows hackers to exploit human vulnerabilities and trick users into revealing sensitive information...

2 Chrome Zero-Days Exploited at Pwn2Own 2024: Patch Now

Google has announced a crucial update to its Chrome browser, addressing several vulnerabilities, including...

The Moon Malware Hacked 6,000 ASUS Routers in 72hours to Use for Proxy

Black Lotus Labs discovered a multi-year campaign by TheMoon malware targeting vulnerable routers and...
Guru baran
Guru baranhttps://gbhackers.com
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Mitigating Vulnerability Types & 0-day Threats

Mitigating Vulnerability & 0-day Threats

Alert Fatigue that helps no one as security teams need to triage 100s of vulnerabilities.

  • The problem of vulnerability fatigue today
  • Difference between CVSS-specific vulnerability vs risk-based vulnerability
  • Evaluating vulnerabilities based on the business impact/risk
  • Automation to reduce alert fatigue and enhance security posture significantly

Related Articles