A civil complaint along with criminal seizure warrants and a temporary restraining order were issued by the Department of Justice against 13 unidentified people whose actions infected over 1.8 million computers for almost a decade.
Coreflood is a software that collects passwords and financial information. Computers that are infected with Coreflood are known as the Coreflood botnet. Owners of botnet domains invade corporate and bank computers and accumulate emails and private financial information.
Examples of their practices include their transferring hundreds of thousands of dollars from the bank accounts of a defense contracting firm, a real estate company, and a law firm. In one instance, the software was able to steal credit card information kept by major hotel chain. Federal prosecutors estimate that the thieves have stolen millions of dollars.
Prosecutors also said that the Coreflood botnet jeopardized the security of the United States. The ability of the software to remain undetected for many years was worrisome to federal officials. The U.S. was able to shut down Coreflood, which was the first time the government was able to seize control of a botnet.
The defendants have been charged with wire fraud, bank fraud and international interception of electronic communications.