FBI confirms it issued remote kill command to blow out Volt Typhoon's
botnet
Remotely disinfects Cisco and Netgear routers to block Chinese
critters
...
...
...
"China's hackers are targeting American civilian critical
infrastructure, pre-positioning to cause real-world harm to American
citizens and communities in the event of conflict," FBI Director
Christopher Wray said in a statement. "Volt Typhoon malware enabled
China to hide as they targeted our communications, energy,
transportation, and water sectors."
The Feds claim the Middle Kingdom keyboard warriors downloaded a
virtual private network module to the vulnerable routers and set up an encrypted communication channel to control the botnet and hide their
illegal activities. Specifically: Volt Typhoon used the US-based
routers and IP addresses to target US critical infrastructure, we're
told.
...
...
"A router that is not infected by the KV Botnet malware would not
receive or respond to this command," court documents claim.
The Feds, along with foreign agency partners in Five Eyes nations,
first warned about this threat in May 2023.
https://www.theregister.com/2024/01/31/volt_typhoon_botnet/
--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)