The FBI says it was authorized to mass-remove “PlugX” malware from more than 4,000 compromised machines in the United States

After obtaining the necessary court orders, the researchers, together with the Cyber Division of the Paris Prosecution Office, French Gendarmerie Cyber Unit C3N, the FBI, and the DoJ, ran the campaign and successfully removed the malware from infected computers.

Law enforcement turns the PlugX malware’s own self-delete mechanism against it, nuking the China-linked trojan from thousands of US machines.

According to the FBI, it worked on deleting the malware from over 4,000 Windows-based computers, further regarding that PlugX is capable of taking over a computer to steal the files and share them with the right people over in China.

The FBI said today that it removed Chinese malware from 4,258 US-based computers and networks by sending commands that forced the malware to use its "self-delete" function.

Federal authorities announced Tuesday that they have erased Chinese malware from thousands of computers across the United States.

The U.S. Department of Justice announced today that the FBI has deleted Chinese PlugX malware from over 4,200 computers in networks across the United States.

FBI conducts unprecedented operation to remove Chinese PlugX malware from over 4,200 US computers with international assistance.

The FBI and French authorities conducted an international operation to remotely delete Chinese malware used by Beijing-linked hackers to steal data from thousands of U.S., European, and Asian computer networks,

To retrieve information from and send commands to the hacked machines, the malware connects to a command-and-control server that is operated by the hacking group. According to the FBI, at least 45,000 IP addresses in the US had back-and-forths with the command-and-control server since September 2023.

The Department of Justice and the FBI have completed a project to remotely remove malware used by Chinese hackers from computers in the US.