Authorities arrest 23-year-old accused of running the Kimwolf botnet

The article describes the U.S. and international disruption of several IoT/Android botnets—primarily Kimwolf—reporting the arrest of a 23-year-old alleged operator. Kimwolf is an Android-based DDoS and proxying botnet that has infected millions of devices, executed record terabit-scale attacks, used evasion techniques (DNS-over-TLS, elliptic-curve command signing, simple XOR obfuscation, blockchain-based hiding), and operated as part of a cybercrime-as-a-service ecosystem; authorities seized infrastructure and domains and unsealed charges and seizure warrants.