Kaspersky Lab today announced its participation in a ground breaking INTERPOL-led cyber crime operation involving public and private sectors across the ASEAN region. Nearly 9,000 botnet command and control (C2) servers and hundreds of compromised websites, including government portals were identified from the activity.
The operation was carried out from the INTERPOL Global Complex for Innovation (IGCI) in Singapore, the research and development facility of the world’s largest police organization. Cyber crime investigators from Indonesia, Malaysia, Myanmar, Philippines, Singapore, Thailand, and Vietnam gathered together at the IGCI to exchange information on specific cyber crime situations in their respective countries. An additional cyber intelligence report was contributed by China.Experts from Kaspersky Lab cooperated with the INTERPOL to share fresh cyber threat discoveries and to formulate recommended actions along with six other private companies, namely Cyber Defence Institute, Booz Allen Hamilton, British Telecom, Fortinet, Palo Alto Networks, and Trend Micro.
Being the only vendor able to detect the infection at the time, Kaspersky Lab provided the INTERPOL team with an exclusive report on a WordPress plugin vulnerability that has affected thousands of websites in the region, including those belonging to government agencies, universities, NGOs, and private businesses.The botnets data shared by Kaspersky Lab covered various malware families, specifically those targeting financial organizations, spreading ransomware, launching distributed-denial-of-service (DDoS) attacks, distributing spam, and enabling other criminal activities. Investigations into the C2 servers are currently ongoing.