back to article International operation takes down Russian RSOCKS botnet

A Russian operated botnet known as RSOCKS has been shut down by the US Department of Justice acting with law enforcement partners in Germany, the Netherlands and the UK. It is believed to have compromised millions of computers and other devices around the globe. The RSOCKS botnet functioned as an IP proxy service, but instead …

  1. Eclectic Man Silver badge

    Cunning

    "It appears that FBI investigators used the simple tactic of purchasing access to RSOCKS in order to get inside and identify its backend infrastructure and its victims. The initial undercover operation was as far back as 2017 and identified approximately 325,000 compromised devices throughout the world."

    I wonder why they chose to wait so long and close it down now. I'm guessing that they now have an extensive list of customers and are ready to act on that.

    1. Tubz Silver badge

      Re: Cunning

      Why the delay in acting, the FBI had to wait for the other 3 letter agencies to go through the list, setup their own backdoors and get anything they need, before blowing the whistle.

  2. Pascal Monett Silver badge

    "the site has been seized by the FBI"

    Okay, good thing, but what about all those IoShite things that are still compromised ?

    They're just waiting for the next bunch of miscreants to start all over again.

  3. TeeCee Gold badge

    ...targeted a variety of Internet of Things (IoT) devices...

    So, not your sophisticated cyber criminals, more the usual s'kiddies after the low-hanging fruit then?

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like