Microsoft Leads Takedown of Zeus Command-and-Controls

Posted: March 28, 2012 in Analysis

A number of key Command and Control servers for the Zeus and SpyEye Botnets have been taken down in an operation led by Microsoft. On Friday, March 23, Microsoft employees and US Marshalls armed with a federal warrant raided facilities in Pennsylvania and Illinois that were housing equipment allegedly being used by the botnets. The takedown was the result of months of work culminating in Microsoft filing a suit against 39 unnamed parties seeking permission to disrupt the command and control infrastructure for the botnets. The action follows similar tactics used by Microsoft to takedown other botnets such as the Waledac, Rustock and Kelihos botnets. Microsoft worked with officers from the Financial Services – Information Sharing and Analysis Center (FS-ISAC), the US Marshalls, the National Automated Clearing House Association, the US electronic payments association and researchers from the F-Secure. While the move is seen by many as one that will cause severe disruption to the operation of these botnets experts warn that those botnets will not be entirely disabled.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s