FBI operation tricked thousands of computers infected by Qakbot into uninstalling the malware::The U.S. government dismantled the infrastructure of the notorious Qakbot malware, which caused millions of dollars of damage.
To dismantle the botnet, the FBI gained lawful access to Qakbot’s infrastructure and redirected Qakbot traffic to FBI-controlled servers, which instructed infected computers to download an uninstaller file. This uninstaller was created by law enforcement to untether the victims’ computers from the Qakbot botnet, preventing further installation of malware through Qakbot.
During this operation, named “Operation Duck Hunt,” the FBI said it recovered the stolen credentials — including email addresses and passwords — of more than 6.5 million victims, adding that its international partners identified “millions more.”
The FBI also announced the seizure of 52 servers, which it said would “permanently dismantle” the botnet.