This week representatives of Interpol and CERT told on the international operation Goldfish Alpha, held with the support of the Cyber Defense Institute and Trend Micro. Thanks to this operation, hacked MikroTik routers in ten countries of Southeast Asia were cleaned of malvari.
Law enforcers said the operation began after hacking of more than 20,000 MikroTik routers that the criminals used to mine cryptocurrency was discovered in June last year.
Over the next months, Interpol worked closely with the private cybersecurity sector, law enforcement agencies, and CERT representatives from various countries, including Brunei, Cambodia, Indonesia, Laos, Malaysia, Myanmar, the Philippines, Singapore, Thailand, and Vietnam over the next few months. The joint efforts of specialists were aimed at identifying compromised routers, preventing victims and installing patches that no longer allowed cybercriminals to control the devices.
Now the international law enforcement agency claims that these efforts have helped reduce crypto-jacking in Southeast Asia by 78% compared to June 2019.
Let me remind you that hacking MikroTik routers and introducing crypto-jacking scripts on them has become a popular practice among hackers back in 2018. For example, then attackers used the recently discovered vulnerability to crack and infect more than 200,000 routers around the world.