The US government, in collaboration with authorities from Germany and Canada, has successfully disrupted a group of IoT botnets that were responsible for some of the largest DDoS attacks recorded, with traffic surges exceeding 30 terabits per second.
Details of the Disruption
The Department of Justice announced the operation targeted the command-and-control infrastructure of four specific botnets: Aisuru, KimWolf, JackSkid, and Mossad. Collectively, these botnets had compromised over three million internet-connected devices globally.
Scope and Impact
The botnets primarily exploited common vulnerabilities found in consumer devices such as routers, IP cameras, and digital video recorders, which often come with weak default credentials and infrequent updates. According to the DOJ, these networks were linked to hundreds of thousands of DDoS attacks, including attempts against US Department of Defense systems and other significant targets. The scale of these attacks is noteworthy, with one incident peaking at approximately 31.4 Tbps.
Monetization of Attacks
Prosecutors indicated that the operators of these botnets were not only engaged in disruptive activities but also monetized their capabilities by offering DDoS-for-hire services. This model allows cybercriminals to extort victims by threatening sustained attacks unless payments are made, effectively transforming compromised devices into a rental service for cyberattacks.
Ongoing Vulnerabilities
While the operation has disrupted the command infrastructure, the underlying issue remains: millions of insecure devices are still active on the internet, many with outdated firmware or default passwords. This situation continues to provide a fertile ground for future botnet development. Although the recent actions have reduced the volume of malicious traffic, the conditions that enabled these botnets to flourish persist.
This article was produced by NeonPulse.today using human and AI-assisted editorial processes, based on publicly available information. Content may be edited for clarity and style.
