Yesterday, the FBI and U.S. Department of Justice announced a legal and technical operation to take down the Coreflood botnet, taking legal action to get a restraining order against the botnet operators and seizure warrants to go after the botnet infrastructure.
Over on the Microsoft on the Issues blog, the Microsoft Digital Crimes Unit commends the actions, which continue to build on industry collaborative efforts (like Microsoft’s recent Rustock and Waledac botnet takedowns) to fight against botnets.
Microsoft teams have also take a couple of actions to help minimize Coreflood future impact or resurgence:
- Microsoft Malware Protection Center has added Win32/Afcore (Coreflood) malware detection in our Malicious Software Removal Tool. Please see the MMPC blog for more technical information about the Win32/Afcore malware.
- Microsoft has also created a dedicated website to provide free information and tools to help people get rid of botnet malware in order to regain control of their computers.
We also encourage all computer users to exercise safe practices to protect their computers from becoming infected with malware, such as running genuine and up-to-date software. For Windows users, this means also ensuring Windows Update is turned on to automatically update your Windows software, firewall protection and anti-virus and anti-malware protection.