Microsoft has undertaken lawsuits e techniques per rout the net that used the group ZLoader to spread virus called ZLoader. The group can be found in computer devices in businesses, hospitals, schools and homes around the world and is run by a global crime gang organized internet based. Instead, malware is designed for to steal ed extort money.
Microsoft blocks ZLoader, the group that spread viruses
Microsoft said it got a ‘United States District Court order for the Northern District of Georgia which allowed them to take control of 65 domains that the ZLoader gang he used to grow, control and communicate with his botnet.
Domains are now directed to a sink hole of Microsoft where they can no longer be used by criminal operators. Zloader contains a domain generation algorithm embedded in the malware it creates additional domains as a fallback or backup communication channel for the botnet.
During the investigation, Microsoft identified one of the authors behind the creation of a component used in the ZLoader botnet to distribute viruses. The author is Denis Malikov, who lives in the city of Simferopol on the Crimean peninsula. The company has decided to appoint an individual in connection with this case to clarify that cybercriminals will not be allowed to hide behind anonymity of the internet to commit their crimes.
Zloader’s primary focus was the financial theft; through the virus, it stole account login IDs, passwords and other information to take money from people’s accounts. Zloader also included a component that disabled security software e antivirus. Over time those behind Zloader have started to offer malware as a service; used a delivery platform to distribute ransomware, including Ryuk.
Ryuk is well known for targeting health institutions to extort payment without considering the patients they put at risk.
Microsoft currently expects defendants to make efforts to do so relive the operations of Zloader. The team has reported this case to law enforcement and is following this activity closely. Finally theagency also confirms that it will continue to work with partners to monitor the behavior of these cybercriminals.
Leave a Reply
View Comments