Categories: CyberCrimeSecurity

Mumblehard Linux Spamming Botnet Finally Taken Offline

One of the world’s most damaging botnets has finally been shut down after a concerted effort from security firms and governments.

The Mumblehard botnet was responsible for targeting servers running both Linux and BSD, causing backdoors that allowed cybercriminals full control of the system simply by running arbitrary code, after which they could hijack the server to send out spam emails.

However, it has now been successfully taken offline by security firm ESET, in co-operation with CyS-CERT and the Cyber Police of Ukraine, the former revealed today.

Squashed

Noting that Mumblehard had been in-operational now since February 29, ESET is now running a sinkhole server for all known components, with the data being shared with overseer CERT-Bund, which is now notifying the affected parties around the world.

The botnet had been slowing down since ESET published a technical analysis of Mumblehead last May, with the company noticing an immediate reaction from its operators.

However this then spurred the criminals on to quickly update their botnets, which were moved onto a single command and control (C&C) server.

ESET was then able to leap into action with its partners, with the Cyber Police of Ukraine shutting down the Mumblehard C&C server on 29th February and replacing it with ESET’s sinkhole.

This detected that almost 4,000 Linux systems compromised with the Mumblehard botnet agent at the end of February, many of which had been compromised through an unpatched CMS such as WordPress or Joomla, or one of their plugins.

“Collaboration with law enforcement and external entities was crucial to making this operation a success,” said ESET.

“ESET would like to thank the Cyber Police of Ukraine, CyS Centrum LLC and CERT-Bund. We are proud of our efforts to make the internet a safer place.

“Mumblehard might not be the most prevalent, the most dangerous or the most sophisticated botnet out there, but shutting it down is still a step in the right direction and shows that security researchers working with other entities can help reduce the impact of criminal activity on the internet.”

What do you know about famous hackers? Take our quiz!

Mike Moore

Michael Moore joined TechWeek Europe in January 2014 as a trainee before graduating to Reporter later that year. He covers a wide range of topics, including but not limited to mobile devices, wearable tech, the Internet of Things, and financial technology.

Recent Posts

Craig Wright Sentenced For Contempt Of Court

Suspended prison sentence for Craig Wright for “flagrant breach” of court order, after his false…

1 day ago

El Salvador To Sell Or Discontinue Bitcoin Wallet, After IMF Deal

Cash-strapped south American country agrees to sell or discontinue its national Bitcoin wallet after signing…

1 day ago

UK’s ICO Labels Google ‘Irresponsible’ For Tracking Change

Google's change will allow advertisers to track customers' digital “fingerprints”, but UK data protection watchdog…

1 day ago

EU Publishes iOS Interoperability Plans

European Commission publishes preliminary instructions to Apple on how to open up iOS to rivals,…

2 days ago

Momeni Convicted In Bob Lee Murder

San Francisco jury finds Nima Momeni guilty of second-degree murder of Cash App founder Bob…

2 days ago