Subscribe

Chinese Botnet “Raptor Train” Infects 260,000 Devices Worldwide

A massive Chinese botnet dubbed “Raptor Train” has been disrupted by the FBI and cybersecurity researchers. This sophisticated network infected over 260,000 networking devices, primarily targeting critical infrastructure in the United States and other countries. According to FBI reports almost half the infected nodes were in the US and Canada with 126,000 in the US and 9,600 in Canada.

The botnet, active since May 2020, targeted entities in military, government, higher education, telecommunications, defense, and IT sectors.  The FBI has linked the botnet to the Chinese state-sponsored hacker group Flax Typhoon

Raptor Train infected a wide range of devices, including SOHO routers, IP cameras, and network-attached storage servers. At its peak in June 2023, the botnet controlled over 60,000 devices simultaneously.

The primary payload is a variant of the Mirai malware, which researchers call Nosedive, designed for DDoS attacks. The botnet’s sophisticated architecture includes three tiers of activity for specific operations, making it highly adaptable and resilient.

FBI Director Christopher Wray confirmed that the bureau executed court-authorized operations to take control of the botnet infrastructure and remove malware from infected devices.

This discovery highlights the ongoing cybersecurity threats posed by state-sponsored actors and the vulnerability of consumer and small business networking devices.

Users are advised to regularly reboot their routers, ensure that they have installed the latest updates, and replace any end-of-life devices to protect against such threats. This advice should apply to corporate equipment and any work from home or home offices.

 

Top Stories

Toyota confirms leak of 240GB of sensitive data in recent hack

Former Google CEO Eric Schmidt makes controversial comments

Study finds 94% of spreadsheets have critical errrors

Study says 94% of spreadsheets contain critical errors

Elon Musk claims DDoS attack caused issues in live-streamed interview with Trump – experts are skeptical

Google anti-trust ruling a financial disaster for Firefox

Related Articles

Sleeper Supply Chain Attack Activates After 6 Years

May 31, 2025 A coordinated supply chain attack has compromised between 500 and 1,000 e-commerce websites by exploiting vulnerabilities in 21 more...

Russian-Controlled Open Source Tool Raises Alarms Over U.S. Cybersecurity

May 31, 2025 A widely used open-source Go library, easyjson, used in healthcare, finance and even defence has come under scrutiny more...

Signal Archiving Tool Used By Trump Admin Is Breached, Raising Alarms Over Messaging Security (EDITORIAL)

May 31, 2025 (EDITORIAL) A messaging tool used by Trump administration officials to archive encrypted Signal messages has been hacked — more...

Amazon’s Project Kuiper Takes Aim at Starlink as Satellite Internet Race Intensifies

May 31, 2025 Starlink’s dominance in satellite internet is facing its first real test. Amazon’s Project Kuiper has moved from theory more...

Jim Love

Jim Is and author and pud cast host with over 40 years in technology.

Share:
X/Twitter
Linkedin
Blue Sky
Tech News Day is a daily publication featuring key news stories about technology and how it affects businesses.

Follow Us

X-twitter Linkedin-in

Popular categories

Tech News Delivered

New, Relevant Tech Stories. Our selection is done by industry professionals – executives like you who pick the top stories for that day. Our writers summarize them to give you the key takeaways.
Subscribe
© 2025 TECHNEWSDAY. All rights reserved.