India, apart from Brazil and Southeast Asia, was one of the regions affected by Glupteba, a Russia-based threat actor known to steal user credentials, cookies, and mine cryptocurrencies on infected systems. This finding came up in the Google Threat Analysis Group's new report on actions taken to dismantle the multi-component botnet's actions, such as terminating — 1,183 Google accounts 908 cloud projects 870 Google ads 3.5 million users were warned before downloading a malicious file Parallel to the analysis, tracking, and technical disruption of this botnet, Google has also filed a lawsuit against two individuals believed to be located in Russia for operating the Glupteba Botnet and its various criminal schemes, the tech giant said. This report shows how malicious actors are driven by cryptocurrencies and related activities to indulge in illegal practices such as, in this case, hacking platforms. Money laundering concerns and scams have also been linked to the crypto market which is unregulated in most countries. A crypto bill is soon to be tabled in India’s Parliament. How Glupteba was delivered to affected systems For a period of time, we observed thousands of instances of malicious Glupteba downloads per day. The following image shows a webpage mimicking a software crack download which delivers a variant of Glupteba to users instead of the promised software. — Google [caption id="attachment_152170" align="aligncenter" width="807"] Source: Google[/caption] Researchers found that other than mining cryptocurrencies and stealing credentials, those behind the Glupteba botnet were selling— Access to virtual machines loaded with stolen credentials…
