3 Plead Guilty in Mirai Botnet-Related Charges -- Security Today

3 Plead Guilty in Mirai Botnet-Related Charges

Three defendants have pleaded guilty to charges involving the Mirai botnet that was used to knock out several major websites last year, according to court documents unsealed on Tuesday.

By Jessica Davis
Dec 15, 2017

Three defendants have pleaded guilty to charges involving the Mirai botnet that was used to knock out several major websites last year, according to court documents unsealed on Tuesday. The Mirai botnet, a system of hacked internet-connected devices, was used in distributed denial-of-service (DDoS) attacks on several major websites last year.

The Justice Department charged Paras Jha, Josiah White and Dalton Normal with building and renting out the Mirai botnet, a system of more than 300,000 hacked devices used to flood other websites with junk online traffic. The three men were not charged in connection to the attack that knocked out several major websites last year, but Jha did admit to participating in selling access to the Mirai botnet for others to use in attacks and to promoting it on criminal web forums.

Mirai generated traffic for DDoS attacks by creating networks of infected internet-connected devices and having them all contact a website at the same time. These large floods of traffic overwhelmed victims’ servers, crashing or at least severely slowing their websites.

The botnet served as a platform for hacking these devices. Researchers have determined that it infected nearly 65,000 devices in its first 20 hours and doubled in size every 76 minutes to ultimately build a sustained strength of between 200,000 and 300,000 devices, including routers and security cameras.

The networks built by Mirai were so large they broke several size records for DDoS attacks. One of its largest attacks took place on Oct. 21, 2016, when Mirai was used in a DDoS attack on the online technology provided Dyn, interrupting service to many sites – including Twitter, Etsy, Netflix and Reddit.

None of the men has been sentenced. The federal indictments were unsealed in federal court in Alaska.

About the Author

Jessica Davis is the Associate Content Editor for 1105 Media.

Genetec Brings Powerful New Capabilities to Security Center SaaS
06/12/2025
Electronic Security Industry Applauds Passage of Oregon SB 959 to Combat Signal Jamming
06/12/2025
Security LeadHER 2025 Fosters Growth, Engagement and Community for Women in Security
06/12/2025
Hanwha Vision Holds Pricing Steady Amid Tariff Volatility
06/03/2025
ESX 2025 to Kick Off with Exclusive New Member Meetup
06/02/2025
ASIS International Unveils Program for GSX 2025
05/29/2025
Arrow Security Celebrates Grand Opening of New Boston Office
05/29/2025
Texas Hospital Association Names CENTEGIX an Industry Partner to Advance Healthcare Worker Safety
05/23/2025

Featured

Report: Nearly 1 in 5 Healthcare Leaders Say Cyberattacks Have Impacted Patient Care

Omega Systems, a provider of managed IT and security services, today released new research that reveals the growing impact of cybersecurity challenges on leading healthcare organizations and patient safety. According to the 2025 Healthcare IT Landscape Report, 19% of healthcare leaders say a cyberattack has already disrupted patient care, and more than half (52%) believe a fatal cyber-related incident is inevitable within the next five years. Read Now
- Cybersecurity
AI Is Now the Leading Cybersecurity Concern for Security, IT Leaders

Arctic Wolf recently published findings from its State of Cybersecurity: 2025 Trends Report, offering insights from a global survey of more than 1,200 senior IT and cybersecurity decision-makers across 15 countries. Conducted by Sapio Research, the report captures the realities, risks, and readiness strategies shaping the modern security landscape. Read Now
- Cybersecurity
Analysis of AI Tools Shows 85 Percent Have Been Breached

AI tools are becoming essential to modern work, but their fast, unmonitored adoption is creating a new kind of security risk. Recent surveys reveal a clear trend – employees are rapidly adopting consumer-facing AI tools without employer approval, IT oversight, or any clear security policies. According to Cybernews Business Digital Index, nearly 90% of analyzed AI tools have been exposed to data breaches, putting businesses at severe risk. Read Now
- Cybersecurity
- Artificial Intelligence
Software Vulnerabilities Surged 61 Percent in 2024, According to New Report

Action1, a provider of autonomous endpoint management (AEM) solutions, today released its 2025 Software Vulnerability Ratings Report, revealing a 61% year-over-year surge in discovered software vulnerabilities and a 96% spike in exploited vulnerabilities throughout 2024, amid an increasingly aggressive threat landscape. Read Now
- Cybersecurity
Motorola Solutions Named Official Safety Technology Supplier of the Ryder Cup through 2027

Motorola Solutions has today been named the Official Safety Technology Supplier of the 2025 and 2027 Ryder Cup, professional golf’s renowned biennial team competition between the United States and Europe. Read Now
- Facility Security

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Webinars

Whitepapers

New Products

PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening.
Camden CV-7600 High Security Card Readers

Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure.
Connect ONE®

Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.