"Chinese Hackers Fail to Rebuild Botnet After FBI Takedown"

The China-backed hacking group Volt Typhoon failed to revive a botnet recently shut down by the FBI. The botnet had previously been used in attacks against US critical infrastructure. Before the KV-botnet was taken down, it enabled the Volt Typhoon threat group to evade detection by proxying malicious activity through hundreds of compromised Small Office/Home Office (SOHO) routers. On December 6, the FBI obtained a court order authorizing it to dismantle the botnet. FBI agents then took over one of Volt Typhoon's command-and-control (C2) servers, cutting off the hackers' access to the infected devices. This article continues to discuss Volt Typhoon's failed attempt to rebuild the dismantled botnet.

Bleeping Computer reports "Chinese Hackers Fail to Rebuild Botnet After FBI Takedown"

Submitted by grigby1

Submitted by Gregory Rigby on