Spanish Police Brings Down Criminals Behind Mariposa Botnet

Three men behind one of the biggest botnets in the world have been nailed by the Spanish Civil Guard, it has been revealed today; Mariposa, which controlled more than 13 million computers worldwide has finally been closed down.

Mariposa victims were present in more than 190 countries and the botnet also managed to snare computers in more than 40 major banks and entreprises, all of which are in the top 1000 companies in the world.

The scale of the intrusion of Mariposa amongst the global companies was such that it prompted Christopher Davis, chief executive of security firm Defence Intelligence, to tell the BBC that it would be easier to come up with a list of Fortune 1000 companies that haven't been compromised.

The team behind Mariposa had managed to exploit an unknown vulnerability in Microsoft's Internet Explorer browser to spread across P2P networks, USB drives and even Instant messaging links.

They managed to collect sensitive data from more than 800,000 people globally since the botnet came into operation and was only discovered in early 2009 before being completely closed down in December 2009.

The law enforcement authorities have disclosed that it was only after one of the criminals made a faux-pas by forgetting to mask his IP address that they managed to zero on the three criminals.

Our Comments

Senior research advisor Pedro Bustamante from Panda Security, said that "This is very alarming because it proves how sophisticated and effective malware distribution software has become, empowering relatively unskilled cyber criminals to inflict major damage and financial loss"

Related Links

Mariposa botnet busted by Spanish police

(Telegraph)

Spanish police arrest masterminds of 'massive' botnet

(BBC)

Co-ordinated effort crushes Mariposa botnet

(V3)

Botnet cyber-criminals nabbed in Spain

(Techwatch)

Spanish Mariposa botnet makers arrested

(Techradar)