Interpol Spots Thousands of C&C Servers Across Asean

Interpol Spots Thousands of C&C Servers Across Asean

Interpol is claiming success after discovering close to 9000 C&C servers and 270 infected websites across the Asean region.

The global police network’s Singapore-based Global Complex for Innovation (IGCI) teamed up with investigators from Indonesia, Malaysia, Myanmar, Philippines, Singapore, Thailand and Vietnam on the initiative, with cyber-intelligence also supplied by China.

Interpol officers also liaised with multiple private sector firms: Trend Micro, Kaspersky Lab, Cyber Defense Institute, Booz Allen Hamilton, BT, Fortinet and Palo Alto Networks.

Thanks to their combined efforts, officers found 8800 C&C servers across eight countries, responsible for financial malware, ransomware, Distributed Denial of Service (DDoS) attacks and spam.

Investigators also found close to 270 infected websites including some government portals, potentially exposing data on citizens.

Hackers managed to compromise these by exploiting an unnamed vulnerability in a web design app, Interpol claimed.

The law enforcement organization also claimed to have “identified” a number of phishing website operators including one with links to Nigeria and one selling phishing kits on the darknet who has posted to YouTube.

The investigation is far from over, but Interpol is keen to show the value of public-private partnerships in tackling cross-border cybercrime.

“With direct access to the information, expertise and capabilities of the private sector and specialists from the Cyber Fusion Centre, participants were able to fully appreciate the scale and scope of cybercrime actors across the region and in their countries,” said IGCI executive director Noboru Nakatani.

“Sharing intelligence was the basis of the success of this operation, and such cooperation is vital for long-term effectiveness in managing cooperation networks for both future operations and day-to-day activity in combating cybercrime.”

Those involved from the private sector lined up to confirm their support for such initiatives.

“The greatest threats to global cybersecurity are those that emanate from cyber-criminal undergrounds,” noted Trend Micro chief cybersecurity officer, Ed Cabrera.

“What is needed is a global cybersecurity strategy that leverages the power of public-private partnerships to disrupt, degrade and deny cyber-criminals’ freedom of movement and the ability to monetize their attacks. Collaboration with Interpol in take downs such as this cyber surge are exemplary towards this goal.”

Source: Information Security Magazine