Failing ISP Causes ZeuS Botnet To Falter

The infamous ZeuS botnet has suffered a significant drop in its servers after an internet service provider in Kazakhstan, Troyak.org, was disconnected from the internet.

Cisco security team confirmed that the world's largest botnet had suffered a critical blow as only 181 of its 249 servers were now active.

The drop in ZeuS botnet's active command and control servers was first reported by Swiss security blog Abuse.ch, which reported that according to its ZeuS tracker statistics page, 'six of the worst ZeuS hosting ISP suddenly disappeared from the ZeuS Tracker.'

The ZeuS botnet comprises of a wide network of systems which are affected with the botnet by the means of fake anti-malware and social media programs.

The infected systems took instruction from a control and command centre, that helped hackers steal bank logins and other sensitive details.

Expressing his satisfaction inn the drop in ZeuS servers, Erin Lockhart, Cisco Public Relations, said in a statement that "Even though the thousands of victims are still infected with ZeuS, the malware running on their PCs is unable to communicate with its controller and no new data can be stolen from them."

Our Comments

Cisco, explaining the importance of the feat, also reported that with the disconnection of the Troyak ISP, as much as 25 percent of the world's botnet infected systems, were now free from its command and control centres.

Related Links

Zeus botnet shaken by ISP cutoffs

(Zd Net)

Zeus Botnet Crippled When ISP Goes Down

(PC Mag)

Huge 'botnet' amputated, but criminals reconnect

(Google News)

Zeus botnets suffer mighty blow after ISP taken offline

(The Register)