Particle.news
Download on the App Store
12 ARTICLES
·
last yr.

U.S. Disrupts Major Russian Cyber Espionage Network

Operation Dying Ember neutralizes GRU-controlled botnet targeting over 1,000 routers in homes and businesses.

FBI Director Christopher Wray testifies during a Congressional full committee hearing in Washington, DC, on January 31, 2024.
Image
Image
Russian hackers were disrupted by American authorities.

Overview

  • The U.S. Justice Department, in coordination with international partners, disrupted a Russian GRU-controlled hacking network that infiltrated over 1,000 home and small business routers in the U.S. and abroad.
  • The operation, dubbed 'Operation Dying Ember,' involved the FBI secretly copying and deleting stolen data and malware from the compromised routers.
  • The malware, known as 'Moobot,' was installed on Ubiquiti Edge OS routers using default administrator passwords, allowing the GRU to turn the network into a global cyber espionage platform.
  • Affected users are advised to perform a factory reset, update firmware, and change default passwords to secure their routers against future attacks.
  • The disruption is part of broader efforts to counter Russia's cyber campaigns against the U.S. and its allies, including Ukraine.