"US Feds Shut Down China-Linked 'KV-Botnet' Targeting SOHO Routers"

The US government took action to neutralize a botnet of hundreds of US-based Small Office and Home Office (SOHO) routers hijacked by Volt Typhoon, a China-linked Advanced Persistent Threat (APT) actor. The Black Lotus Labs team at Lumen Technologies revealed the botnet's existence in mid-December 2023. According to the Department of Justice (DOJ), most of the routers in the KV-botnet were Cisco and NetGear routers that were vulnerable because they were no longer supported through their manufacturer's security patches or software updates. Volt Typhoon has been behind cyberattacks on critical infrastructure sectors in the US and Guam. This article continues to discuss the KV-botnet and efforts to disrupt it. 

THN reports "US Feds Shut Down China-Linked 'KV-Botnet' Targeting SOHO Routers"

Submitted by grigby1

Submitted by Gregory Rigby on