Google disrupts Glupteba blockchain botnet that infected 1mn PCs

Google has also filed a lawsuit against the alleged Russian threat actors and operators of Glupteba Botnet.

On December 07th, 2021, Google revealed that it disrupted the Command and Control infrastructure of the Glupteba blockchain botnet targeting Windows devices. The company has now filed a lawsuit against the botnet’s Russian operators.

What is Glupteba?

Glupteba is a powerful botnet that’s been around since 2014 and comprises one million infected Windows devices from across the globe with the help of malicious pirated software. After it infects a computer, the Glupteba malware steals user credentials and other data, uses the host to mine cryptocurrencies, and turns compromised devices into proxies.

Google Files Lawsuit Against Glupteba Blockchain Botnet

Cracked software spreading Glupteba malware (left) – Cryptocurrency scam ad that threat actors were spreading using Google Ads (right)

Glupteba is generally distributed through pay-per-install networks and traffic distribution systems. The botnet is believed to be growing at a rate of 1,000 devices per day.

According to a blog post from Google’s VP of security Royal Hansen and general counsel Halimah DeLaine Prado,

“Glupteba is notorious for stealing users’ credentials and data, mining cryptocurrencies on infected hosts,

Read More: