www.belgium.be Logo of the federal government

Botnet Eradication Project

What is Botnet Eradication?

 

The Centre for Cyber Security Belgium's Botnet Eradication project warns citizens and companies when they have a vulnerability on one of their computers. The CCB receives daily reports of infections in our country from its Cyber Security partners. This information is passed on to internet service providers so that they can link the IP address to their customers to warn them. The purpose of Botnet Eradication is to reduce the number of botnets in Belgium and prevent cyber-attacks.

What should I do if I have received an alert?

If you have received an alert from your internet provider, an infection has been found on your network. Find out which device is affected and take safety measures.

1. Which device?

A first step you can take is to find out exactly which device is infected. You can do this by thoroughly reading the description of the infection. Some infections are linked to specific operating systems or devices.  If you have multiple devices with the same operating system, we recommend running the security measures (updating, anti-virus scan, etc.) on all of them. A visitor who uses your network and has accessed your Wi-Fi may also be infected. If possible, notify this visitor.

2. Taking security measures

As a second step, it is best to follow the security measures described in the alert, for example by running a virus scan or an update.  Learn more about the different types of infections.

 

How does Botnet Eradication work?

Botnet Eradication

A botnet is a collection of computers that have been infected with malicious software (a virus) and are controlled by a hacker. One computer in such a botnet is called a bot. Hackers use botnets to carry out cyber attacks.

Botnet Eradication takes place in 5 steps.

  1. The CCB receives information about infected IP addresses from its cybersecurity partners.
  2. The CCB forwards this information to the internet provider.
  3. The ISP identifies the customers based on the IP address and time of day.
  4. The internet provider warns the customers.
  5. Customers take safety measures.     

Q&A

What kind of warnings does Botnet Eradication include?

Botnet Eradication sends out alerts related to infectionsInfections are viruses found on a network. So your computer is then infected with a virus. It is best to run an anti-virus scanner or take other security measures as soon as possible. Learn more about anti-virus scanners.

How do I find the infection in my network?

The internet provider only knows your external IP address. As a result, it is not possible to say which device is infected. The CCB therefore recommends that all devices be scanned with anti-virus softwareor that other security measures are taken.  Some infections only occur on a particular operating system (e.g. Windows, Android, iOS, etc.), which allows you to eliminate some devices. Learn more about the different types of infections. If you have multiple devices with the same operating system, we recommend running the security measures (updating, anti-virus scan, etc.) on all of them.

Where does the CCB get this information from?

The information about the infections is provided by various cybersecurity partners, both commercial and open-source information.

What information does the CCB have about me?

The CCB only knows the IP address and the timeof detection. The CCB is unable to determine who the IP address belongs to, which is why internet providers have to help. Internet service providers give IP addresses to their customers to grant them access to the Internet. They can find out who the customer is, by looking at the IP address and the time. The ISP can identify and alert the customers at the request of the CCB. Internet providers are legally not obliged to do this. Lastly, the CCB does not receive any information from the ISP about the affected customer.

Why is Botnet Eradication important?

Internet users are not always aware of the presence of botnets because this malware can go unnoticed. The Botnet Eradication project attempts to help internet users who are ignorant of the problem, by alerting infected internet users. The purpose of Botnet Eradication is to reduce the number of botnets in Belgium and prevent cyber attacks.