May 30, 2024 11:45:00

The FBI and others succeeded in dismantling the world's largest botnet, the '911 S5 botnet,' which connected to more than 19 million IP addresses

The U.S. Department of Justice announced that it had dismantled the '911 S5 botnet,' known as the 'world's largest

botnet ,' and arrested its administrators through an international cooperative operation involving the FBI and multiple foreign investigative agencies.

Office of Public Affairs | 911 S5 Botnet Dismantled and Its Administrator Arrested in Coordinated International Operation | United States Department of Justice
https://www.justice.gov/opa/pr/911-s5-botnet-dismantled-and-its-administrator-arrested-coordinated-international-operation

US dismantles 911 S5 botnet used for cyberattacks, arrests admin

https://www.bleepingcomputer.com/news/security/us-dismantles-911-s5-residential-proxy-botnet-used-for-cyberattacks-arrests-admin/

According to FBI Director Christopher Wray, the FBI and foreign law enforcement agencies conducted a joint cyber operation to dismantle the 911 S5 botnet, the world's largest botnet, arresting its administrator, Wang YunHe, in Singapore and seizing its infrastructure and assets.

Items seized include 12 bank accounts both domestic and international, more than 24 virtual currency wallets, 20 domains, 21 properties in the United States and Singapore, multiple luxury watches, a Ferrari F8 Spider, a BMW i8, a BMW X7 M50d, and a Rolls-Royce.

When you access a service provided by the 911 S5 botnet, a message appears in English, Chinese, and Russian informing you that the domain has been seized. This is in Chinese.

Display in Russian.

Since 2011, Wang and his accomplices have used multiple malicious VPN applications with proxy backdoor capabilities to install malware on victim devices and integrate them into the 911 S5 botnet. The apps used are MaskVPN, DewVPN, PaladinVPN, ProxyGate, ShieldVPN, and ShineVPN.

The 911 S5 botnet is linked to more than 19 million unique IP addresses, including 613,841 in the United States, and has raised approximately $90 million by selling access to these IP addresses to cybercriminals. Cybercriminals have used the 911 S5 botnet for cyber attacks, large-scale fraud, child exploitation, blackmail, bomb threats, smuggling, and more.

Wang is accused of money laundering and multiple fraud charges and faces up to 65 years in prison if convicted on all counts.

◆ Forum is currently open
A forum related to this article has been set up on the official GIGAZINE Discord server . Anyone can post freely, so please feel free to comment! If you do not have a Discord account, please refer to the account creation procedure article to create an account!

• Discord | 'Have you ever come across a website that has been seized by the FBI?' | GIGAZINE
https://discord.com/channels/1037961069903216680/1245661126599905392