IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Massive Bredolab botnet shut down

Dutch authorities have shut down the Bredolab botnet that had infected over 30 million systems.

Cyber crime

The Bredolab botnet, which had infected over 30 million computers worldwide, has been taken down.

The High Tech Crime Team of the Dutch National Crime Squad announced it had disconnected 143 servers which were helping run the botnet and Armenian police have arrested a man believed to be the mastermind.

Investigators determined that the illicit network had the ability to infect three million computers a month. At the end of last year, the team estimated that 3.6 billion emails with Bredolab virus payloads were sent every day to end users.

The criminal operation used services hired in the Netherlands from a reseller of LeaseWeb - one of the biggest hosts in Europe.

LeaseWeb fully cooperated in tackling the botnet and removing its activity from its network.

"On request of the Netherlands police we did not take down the botnet immediately after discovery, but gave the police the opportunity to investigate and deal a lasting blow to this cyber crime organisation," LeaseWeb's security officer Alex de Joode told IT PRO.

"This is a big success. This is one of the largest botnet infrastructures dismantled and one of the few times that the botnet mastermind was also apprehended."

Cyber criminals had used the botnet to steal financial information and other carry out other fraud offences.

The Bredolab virus itself can take complete control over an infected computer and steal data from a user's system.

It also has the ability to copy, change or delete files and other information.

"Bredolab is a large family of complicated, polymorphic Trojans," explained Mikko Hypponen, chief research officer at F-Secure.

"They have been distributed via drive-by-downloads and email. Bredolab is known to be connected to email spam campaigns and rogue security products."

Hypponen claimed in a blog that 2010 "is becoming a good year in shutting down big botnets."

Earlier this year, another mega-botnet in the form of Mariposa was taken down and the suspected criminals behind the operation were arrested.

Read on for our look at the evolution of the botnet and an exploration of past takedowns.

Featured Resources

The state of Salesforce: Future of business

Three articles that look forward into the changing state of Salesforce and the future of business

Free Download

The mighty struggle to migrate SAP to the cloud may be over

A simplified and unified approach to delivering Enterprise Transformation in the cloud

Free Download

The business value of the transformative mainframe

Modernising on the mainframe

Free Download

The Total Economic Impact™ Of IBM FlashSystem

Cost savings and business benefits enabled by FlashSystem

Free Download

Recommended

The mighty struggle to migrate SAP to the cloud may be over
Whitepaper

The mighty struggle to migrate SAP to the cloud may be over

4 Jul 2022
Delivering a hybrid cloud architecture
Whitepaper

Delivering a hybrid cloud architecture

27 Jun 2022
Navigate disruption and drive positive business outcomes with cloud migration
Whitepaper

Navigate disruption and drive positive business outcomes with cloud migration

27 Apr 2022
Navigate disruption and drive positive business outcomes with cloud migration
Whitepaper

Navigate disruption and drive positive business outcomes with cloud migration

27 Apr 2022

Most Popular

Cyber attack on software supplier causes "major outage" across the NHS
cyber attacks

Cyber attack on software supplier causes "major outage" across the NHS

8 Aug 2022
Why convenience is the biggest threat to your security
Sponsored

Why convenience is the biggest threat to your security

8 Aug 2022
How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

29 Jul 2022