Police cleans nearly 15,000 SocGholish-infected sites tied to Evil Corp
Summary
International law enforcement agencies have dismantled a significant part of the SocGholish botnet, cleaning nearly 15,000 infected WordPress sites and taking down over 100 servers. This operation targeted infrastructure linked to the Russian cybercrime group Evil Corp, disrupting their malicious activities.
IFF Assessment
The takedown of a botnet and disruption of a cybercrime group represents a positive development for cybersecurity defenders.
Defender Context
This operation highlights the ongoing efforts by law enforcement to combat sophisticated cybercrime groups like Evil Corp. Defenders should remain vigilant against SocGholish malware and associated phishing campaigns, ensuring their WordPress sites and other web infrastructure are patched and monitored for signs of compromise.