Rantburg

Today's Front Page   View All of Wed 05/28/2025 View Tue 05/27/2025 View Mon 05/26/2025 View Sun 05/25/2025 View Sat 05/24/2025 View Fri 05/23/2025 View Thu 05/22/2025
2024-06-20 Cyber
FBI busts alleged mastermind behind massive network of hijacked devices
[FoxNews] An international law enforcement operation led by the Department of Justice (DOJ) has disrupted a botnet known as 911 S5, which exploited free VPNs to facilitate various cybercrimes, including fraud, harassment and child exploitation.

YunHe Wang, 35, a citizen of China as well as St. Kitts and Nevis, was arrested on May 24 for allegedly creating and running this whole botnet scheme. The feds say he used malware to infect millions of personal Windows computers around the world, building a network with more than 19 million unique IP addresses.
FBI busts alleged mastermind behind massive network of hijacked devices

Wang allegedly created a system that allowed cybercriminals to mask their identities and commit crimes. He did that by creating and disseminating a botnet called 911 S5 to compromise and amass a network of millions of residential Windows computers worldwide from 2014 through July 2022, according to the DOJ. These devices were associated with more than 19 million unique IP addresses, including 613,841 IP addresses located in the U.S.

FBI Director Christopher Wray called 911 S5 the world's largest botnet. It lets cybercriminals bypass financial fraud detection systems and steal billions of dollars from banks, credit card companies and federal lending programs. The government estimates that 560,000 fake unemployment insurance claims came from compromised internet addresses, leading to over $5.9 billion in confirmed losses.

"Additionally, in evaluating suspected fraud loss to the Economic Injury Disaster Loan (EIDL) program, the United States estimates that more than 47,000 EIDL applications originated from IP addresses compromised by 911 S5," the DOJ wrote. "Millions of dollars more were similarly identified by financial institutions in the United States as loss originating from IP addresses compromised by 911 S5."

The DOJ alleges that from 2018 until July 2022, Wang made about $99 million from selling hijacked proxied IP addresses through his 911 S5 operation, receiving payments in both cryptocurrency and fiat currency. Wang used this money to buy real estate in the United States, St. Kitts and Nevis, China, Singapore, Thailand and the United Arab Emirates.

FBI busts alleged mastermind behind massive network of hijacked devices

How the botnet operated

According to the DOJ, the malware was spread through free VPN programs like MaskVPN and DewVPN, which were distributed via torrent sites. It was also bundled with other programs, including pirated software, using pay-per-install services.
placeholder

The operator managed around 150 dedicated servers globally, with 76 rented from U.S. online service providers. These servers were allegedly used to deploy and manage the malicious applications, control the infected devices, run the 911 S5 service and provide paying customers with access to the IP addresses of the compromised devices.

Essentially, the operator hijacked devices by infecting them with malware, the DOJ said. The infected devices then became part of the botnet, allowing their IP addresses to be rented out to cybercriminals. These cybercriminals could then use the hijacked IP addresses to anonymously carry out various offenses while concealing their true locations and identities.
FBI busts alleged mastermind behind massive network of hijacked devices
Why free VPNs should be avoided

Wang's arrest serves as a cautionary tale against using free VPN services. As discussed, he allegedly exploited free VPNs like MaskVPN and DewVPN to distribute malware and enable cybercriminals to misuse the IP addresses of infected devices. However, this is not the only drawback of free VPNs.
Free VPN services often lack robust data protection measures, as they typically do not undergo third-party audits to verify their security practices. Users of free VPNs may also experience sluggish internet speeds and an increased risk of phishing attacks.

Instead of relying on free VPNs, you should consider investing in reputable, paid VPN services that prioritize user privacy, security and performance. Paid VPN providers are more likely to implement robust encryption protocols, maintain strict no-logging policies and offer faster connection speeds.
Free VPN services often lack robust data prote
Posted by Skidmark 2024-06-20 00:43|| || Front Page|| [11143 views ]  Top

#1 You should also consider that the privacy sold by VPN's is only a govt search warrant thick.
Posted by ed in texas 2024-06-20 16:19||   2024-06-20 16:19|| Front Page Top

#2 VPN
Virtually Public Network.
Think about it.
Ref. what we already know about Fed MAE EAST & MAE WEST tracking centers. Toss in ISP DNS tracking, time stamps,OS FLAVOR ID,MS Edge,cookie data,and MAC tracking.

VPN's w/o 2048DH encryption end to end are good for basics.
Posted by NN2N1 2024-06-20 17:04||   2024-06-20 17:04|| Front Page Top

05:08 Whiskey Mike
05:05 Whiskey Mike
05:03 Whiskey Mike
03:23 Besoeker
02:05 Grom the Affective
02:04 Grom the Affective
01:26 49 Pan
00:22 EMS Artifact
00:16 Skidmark









Paypal:
Google
Search WWW Search rantburg.com