News
Chinese national charged with operating ‘world’s largest botnet’ linked to billions in cybercrimes
Colonial Pipeline hack only latest in rising ransomware threats
Hackers hit hundreds of critical systems last year and watchdogs say we’re not doing enough head off more.
STAFF VIDEO, USA TODAY
A Chinese national has been arrested for his role in operating a residential proxy service that was used to defraud billions of dollars from the U.S. government and fund his lavish lifestyle, which included buying luxury cars and property around the world, the Department of Justice announced Wednesday.
YunHe Wang, 35, was arrested on May 24 and charged with creating a massive network of hijacked computer devices, also known as a “botnet,” that was used to conduct cyber attacks, fraud, child exploitation, bomb threats, and export violations, the department alleged. Wang administered the botnet, called “911 S5,” through about 150 servers worldwide from 2014 to 2022, according to an indictment unsealed last week.
About 76 of the servers were leased from online service providers based in the United States, the indictment said. The botnet infected over 19 million IP addresses in nearly 200 countries, including over 613,000 IP addresses located in the United States, according to prosecutors.
The Justice Department announcement comes after Wang and his two co-conspirators, Jingping Liu and Yanni Zheng, were sanctioned by the Department of Treasury for their alleged involvement with the malicious botnet. The department also imposed sanctions on three luxury companies Wang owned or controlled.
Authorities also searched Wang’s residences and seized assets valued at about $30 million as well as identifying other property valued at roughly an additional $30 million, prosecutors said.
“The conduct alleged here reads like it’s ripped from a screenplay,” Matthew Axelrod, assistant secretary for export control at the Department of Commerce, said in a statement Wednesday. “A scheme to sell access to millions of malware-infected computers worldwide, enabling criminals over the world to steal billions of dollars, transmit bomb threats, and exchange child exploitation materials — then using the scheme’s nearly $100 million in profits to buy luxury cars, watches, and real estate.”
The Department of Justice partnered with the FBI and international law enforcement agencies in Singapore, Thailand, and Germany to dismantle the botnet and arrest Wang. The case is the latest in the federal government’s ongoing effort to thwart global cybercrime, which has become increasingly widespread.
These crimes can range from intellectual property theft to ransomware and can cost businesses billions of dollars in losses in addition to threatening critical sectors across the country, according to the Department of State. In recent years, federal authorities have expanded their international operations and country-to-country partnerships in order to better address cyber threats.
‘Urgency and severity of cyberattacks’: EPA urges water utilities to protect nation’s drinking water amid heightened cyberattacks
911 S5 Botnet ‘likely the world’s largest botnet ever’
FBI Director Christopher Wray said in a statement Wednesday that 911 S5 is “likely the world’s largest botnet ever.” According to the indictment, Wang allegedly spread his malware through Virtual Private Network programs and pay-per-install services, which allowed him to manage and control the roughly 150 servers.
Paying customers were then given access to proxied IP addresses that were linked to the hacked devices, the indictment said. Cybercriminals used those addresses to hide their locations and “anonymously commit a wide array of offenses,” the Department of Justice alleged.
“These offenses including financial crimes, stalking, transmitting bomb threats and threats of harm, illegal exportation of goods, and receiving and sending child exploitation materials,” according to the department. “Since 2014, 911 S5 allegedly enabled cybercriminals to bypass financial fraud detection systems and steal billions of dollars from financial institutions, credit card issuers, and federal lending programs.”
Specifically, the botnet targeted COVID-19 pandemic relief programs and filed an estimated 560,529 fraudulent unemployment insurance claims, according to the indictment. Federal authorities confirmed that more than $5.9 billion was stolen as a result.
The indictment further alleged that Wang had amassed about $99 million — either in cryptocurrency or fiat currency — from his sales of the infected proxied IP addresses. He used the illicit proceeds to purchase luxury assets and property.
Wang bought property in the United States, St. Kitts and Nevis, China, Singapore, Thailand, and the United Arab Emirates, according to the indictment. He also had dozens of other assets, such as luxury cars, watches, international bank accounts, and cryptocurrency wallets.
Wang was charged with conspiracy to commit computer fraud, substantive computer fraud, conspiracy to commit wire fraud, and conspiracy to commit money laundering. He faces a maximum of 65 years in prison.
Cybercrime, COVID fraud in the U.S.
Cybercrime is a “significant and growing threat” to the country’s national and economic security, according to the State Department. As people become more dependent on information and communication technologies, the department said more criminals continue to shift online.
Wang’s arrest also comes amid a push from federal officials for organizations to update and follow cybersecurity guidelines. Federal agencies have issued multiple advisories for cyberattacks committed by foreign groups in recent years.
In January, the FBI and Department of Justice announced that they had “disrupted a botnet of hundreds of U.S.-based small office/home office routers hijacked” by China-linked hackers. The group, known as “Volt Typhoon,” targeted critical infrastructure organizations in the United States, such as water systems and electric grids.
The surge in malicious cyber incidents coincides with the rise in online communication during the COVID-19 pandemic, according to a 2023 cyberthreat study. Citing FBI data, the study said cybercrime increased by 400% during the pandemic.
“Cybercriminals find the uncertainty brought by changing daily habits opportune and the increased virtual existence is converted into available attack vectors,” the study noted.
In the four years since the onset of the pandemic, the Internal Revenue Service has investigated over 1,600 tax and money laundering cases related to COVID-19 fraud potentially worth about $8.9 billion, the agency said in March. Cases included fraudulently obtained loans, credits and payments meant for U.S. workers, families and small businesses under the Coronavirus Aid, Relief and Economic Security, or CARES, Act.
Contributing: Josh Meyer, USA TODAY
A federal judge has struck down a New Hampshire law that blocked new voters from using a sworn affidavit to prove their citizenship in the absence of official documents such as a birth certificate or passport.
The decision, filed late Thursday by Judge Samantha D. Elliott of the U.S. District Court in New Hampshire, found that “eliminating the affidavits” as a means of proving citizenship “constitutes an unjustifiable burden on the right to vote in violation of the First and 14th Amendments.” The ruling immediately overturned the law, which was passed in 2024 and signed by the Republican governor at the time, Chris Sununu.
A spokesman for New Hampshire’s Justice Department said the state intended to appeal the decision.
The law “represents a common-sense approach to voter registration and election administration designed to protect the integrity of our elections,” the spokesman, Michael Garrity, said in a statement on Friday.
The law, which created some of the strictest voter registration requirements in the country, was challenged by the American Civil Liberties Union of New Hampshire on behalf of several groups, including the League of Women Voters of New Hampshire.
“New Hampshire’s elections have always been safe, secure and accurate,” Henry Klementowicz, the state A.C.L.U.’s deputy legal director, said in a statement. “This law could have unconstitutionally and needlessly prevented thousands of eligible voters from casting a ballot.”
Reports of wrongful voting in the state did not decline after the law’s passage, Judge Elliott noted, with a similar number of reports filed with the state attorney general in the year before the law was passed, and the year after.
The push for proof of citizenship has been at the core of Republican-backed efforts to change voting rules, ever since President Trump and his allies began promoting baseless conspiracy theories over the past decade that there has been widespread voter fraud by noncitizens.
Mr. Trump put documentary proof of citizenship at the center of his effort to change the country’s voting laws last year. He first signed an executive order in March 2025 that partly sought to establish such a requirement for federal elections, but that provision of the order was rejected by federal courts.
Republicans in Congress then took up the charge, making documentary proof of citizenship central to their federal voting legislation, known as the SAVE America Act. But the measure has stalled in Congress, where Republicans do not have enough votes to overcome a Democratic filibuster of the bill.
With the bill in limbo, Mr. Trump has threatened not to sign any other legislation until Republicans reform the filibuster to pass it, a procedural move known as the “nuclear option.” But his threats have not moved many Republicans to make the move.
There is no evidence of widespread voting by noncitizens, and the Trump administration’s efforts to prove these conspiracies are not succeeding: Out of 49.5 million voter registrations that have been checked by the beginning of 2026, the Department of Homeland Security referred around 0.02 percent of the names for further investigation. Any actual proven cases are likely to be a fraction of that fraction.
Even before the new law was passed, New Hampshire’s voting access had been more limited than most states’. It did not offer early in-person voting, or registration by mail for most voters. And it removed inactive voters after four years. More than 195,000 voters were removed in 2021 alone, according to a summary of evidence in the 100-page court decision.
New Hampshire does offer same-day registration on Election Day, an option that was used by voters some 350,000 times from 2016 to 2024, witnesses testified.
Under the law that was struck down, voters who showed up to register could present a birth certificate, a passport, naturalization papers “or any other reasonable documentation.” But they could no longer, as an alternative, sign an affidavit stating they were 18, a resident of the municipality they were voting in and a citizen of the United States.
“It may be tempting for some to describe the Qualified Voter Affidavit as an exception to the proof-of-citizenship requirement, but it is not,” Judge Elliott wrote in her decision. “A sworn affidavit capable of exposing an affiant to criminal prosecution is a method of proving citizenship.”
“Moreover,” she added, “the evidence shows that it is the only method of proof available to a significant number of New Hampshire voters.”
Experts testified in a trial this year that 5,000 to 30,000 residents in the state did not have documentary proof of citizenship. They said that 14,700 voters had used the affidavit option to register to vote from April to November of 2024.
From left: Jeff Bezos, Roland Garros, Jill Biden.
Marco Bertorello/AFP via Getty Images; Branger/Getty Images/Hulton Archive; Anna Moneymaker/Getty Images
hide caption
toggle caption
Marco Bertorello/AFP via Getty Images; Branger/Getty Images/Hulton Archive; Anna Moneymaker/Getty Images
This week, the pope took a stand on artificial intelligence in an encyclical Google Gemini called “historic and highly ambitious” and an “aggressive, uncompromising critique.” Thanks, Gemini! Enjoy the quiz, y’all.
News
Becerra leads governor’s race, with Hilton and Steyer in tight contest for second spot, poll finds
On the cusp of California’s gubernatorial June 2 primary, a poll shows voters are closely divided among three candidates vying to succeed Gov. Gavin Newsom at a perilous moment in history for the state and the nation.
Among likely California voters, 25% support Xavier Becerra, a Democrat and former Biden Cabinet secretary, according to the survey by UC Berkeley’s Institute of Governmental Studies that was co-sponsored by the Los Angeles Times and released Thursday. Republican Steve Hilton, a former Fox News commentator and British political strategist, has the backing of 21%, while 19% backed billionaire hedge fund founder turned environmental activist Tom Steyer, a Democrat.
California gubernatorial candidate Xavier Becerra takes a selfie while campaigning Tuesday at an event in San Francisco.
(Benjamin Fanjoy / Getty Images)
The survey provided the clearest indication yet that the three have separated themselves from the rest of the field. Support increased for Becerra, Hilton and Steyer since the last Berkeley IGS poll in March. Becerra leapfrogged everyone. In early March, he wallowed near the bottom of the pack at just 5% support among likely voters, and now is the front-runner.
The other candidates floundered. Support for Riverside County Sheriff Chad Bianco, a Republican, dropped 5%, and he now finds himself in a distant fourth place. Former Democratic Rep. Katie Porter of Irvine dropped by almost half to 7%. San Jose Mayor Matt Mahan, former Los Angeles Mayor Antonio Villaraigosa and state Supt. of Public Instruction Tony Thurmond — all Democrats — remained mired in the single digits.
Poll director Mark DiCamillo cautioned that it remains unclear which candidates will finish in first and second place in the June 2 primary, a pivotal question since only the top two finishers will advance to the November general election regardless of party affiliation. The low voter turnout thus far makes predicting the outcome especially difficult.
Although every registered voter in California was sent a mail-in ballot, many have not returned them or dropped them off at voting locations — a telltale sign of the uncertain nature of this year’s governor’s race. The survey, which included all 61 of the gubernatorial candidates on the ballot, found that Democratic turnout thus far is noticeably lower compared with past primary elections, DiCamillo said.
Steve Hilton arrives for a news conference at the San Jose Diridon rail station on Tuesday.
(Jason Henry/Bloomberg via Getty Images)
“We’re assuming that … the Democrats will in fact turn out in the final week after we had concluded our poll and begin to make up ground on what looks like an early lead for Hilton, and those voters favor Becerra,” DiCamillo said.
The survey, conducted between May 19 and 24, found that likely Democratic voters favored Becerra over Steyer by 11 percentage points. Voters registered as “no party preference” were evenly divided among Becerra, Steyer and Hilton. Among likely Republican voters, Hilton led Bianco by almost 2 to 1.
Becerra also had a notable edge over Steyer among women and Latino voters, while Steyer had an advantage among Black voters. Hilton was favored over the two Democrats among self-identified libertarians and among voters in Orange County, the Central Valley and northern coast and Sierra region.
The poll found that 7% of voters remained undecided.
For the first time in more than a quarter of a century, the contest to lead the nation’s most populous state and the world’s fourth-largest economy has consistently lacked a front-runner despite a plethora of candidates.
Two of California’s best-known Democrats, former Vice President Kamala Harris and U.S. Sen. Alex Padilla, both toyed with a run for governor before deciding not to run, which contributed to the sluggishness of the race. The 2026 campaign for governor also languished in the shadow of the mayhem stirred up by President Trump, including his immigration raids throughout Southern California, and the devastation wrought by the 2025 Pacific Palisades and Altadena wildfires.
But a whirlwind of recent developments has drawn attention to the race.
Former Rep. Eric Swalwell (D-Dublin), once a front-runner in the contest, withdrew from the race and resigned from Congress in the aftermath of multiple allegations of sexual misconduct and assault that he denies.
Tom Steyer takes part in a campaign event in Santa Rosa on Wednesday.
(David Paul Morris / Bloomberg via Getty Images)
Additionally, record-breaking amounts of money have flowed into the race. Steyer has smashed state self-funding records by contributing $212 million to his campaign as of Tuesday, according to the California secretary of state’s office. Nearly $85 million has been donated to independent expenditure committees by corporations, labor unions, tech titans, Native American tribes and other special interests, most of which will have policy interests that will be in front of the next governor.
Although the 2026 California governor’s race lacks the allure of recent contests that featured candidates such as global movie star Arnold Schwarzenegger, political scion Jerry Brown and former San Francisco mayor and likely 2028 presidential candidate Gavin Newsom, it is unfolding at a crucial time for Californians.
The state’s most vulnerable residents are facing severe reductions to medical care because of looming federal healthcare funding cuts, and California’s budget, already volatile because of its reliance on the state’s wealthiest residents, may grow more unpredictable. California’s highest-in-the-nation gas prices increased even more because of the U.S.-Iran war, adding to the state’s entrenched affordability crisis, which has driven many residents out of the state.
The cost of living, homelessness and public safety were among the top concerns expressed by voters, according to the poll. Protecting voting rights was also supported by most voters, though their underlying concerns could be starkly different based on their political views.
Democrats have been focused on the disenfranchisement of voters, a fear that has heightened in the aftermath of a recent Supreme Court decision that gutted a section of the Voting Rights Act that forced states to draw voting districts to help elect Black or Latino representatives to Congress. Republicans echo President Trump’s claims of elections being rigged.
Chad Bianco is interviewed May 6 after the gubernatorial debate at the Skirball Cultural Center in Los Angeles.
(Jason Armond / Los Angeles Times)
Voters split largely along party lines about issues such as Trump’s policies about climate change, immigration and taxes.
Voters’ uncertainty in the governor’s race is partly driven by California’s unique, voter-approved “jungle” primary system, in which the two candidates who win the most votes in the June 2 primary advance to the November general election, regardless of party affiliation.
Although the state’s voters are largely registered Democrats, the party’s leaders feared earlier this year that they would splinter among the multiple Democrats on the ballot, leading to Hilton and Bianco advancing to the November general election and ensuring that a Republican would be elected governor. Bianco had the backing of 11% in the new Berkeley survey.
The Republicans were once roughly tied in polls, until Trump endorsed Hilton in April. More than one-third of likely Republican voters said Trump’s endorsement of Hilton made them more likely to support him. Among voters who identified with the “Make America Great Again” movement, nearly two-thirds supported Hilton while less than 3 in 10 backed Bianco.
Though Bianco’s followers seem to be more passionate, “Hilton has got the much broader base of support, and then he got Trump’s endorsement,” DiCamillo said.
He added that Hilton’s rise is unusual in California, where statewide candidates typically spend enormous sums of money to raise their visibility among the state’s 23.1 million registered voters.
“What’s interesting about Hilton is that he hasn’t really done much of his campaigning in the traditional way. He hasn’t run huge amounts of television advertising, you don’t see his name out there in the traditional media, other than in free media,” DiCamillo said. “You can see that in the data, because almost a third of voters still have no opinion of Hilton … about what it was back in March, which is startling for a candidate who is among the leaders.”
Democrats’ fear of being locked out of the November general election led party leaders and allies to effectively urge low-polling candidates to drop out of the race in remarkable public statements in March.
The tables have since turned — the prospect of two Republicans winning the top spots in the June primary appear nonexistent, while polling shows a small possibility of two Democrats advancing to the general election.
“I’m not saying it’s likely, but it’s possible that two Democrats could emerge, and that would have huge implications on turnout in the [November] election,” DiCamillo said, pointing to California congressional races that could shape control of the U.S. House of Representatives. “If you don’t have a Republican at the top of the ticket, it would be dismal for the Republicans’ chances.”
The poll of 8,578 registered California voters was conducted online in English and Spanish and has a margin of error of about 2 percentage points in either direction.
-
San Francisco, CA3 minutes agoGiants reassign 3B coach Borg; Wotus named interim replacement
-
Dallas, TX8 minutes agoVigil honors victims of Dallas apartment explosion that killed three and injured five
-
Miami, FL15 minutes ago
Miami kosher, Mutra, restaurant earns Michelin star | The Jerusalem Post
-
Boston, MA17 minutes agoRed Sox outfielder Roman Anthony suffers another injury setback
-
Denver, CO23 minutes agoDenver weather: Warm weather to end May
-
Seattle, WA30 minutes agoSeattle City Council proposal would use street closures to curb gun violence
-
San Diego, CA33 minutes agoSan Diego teen organizes Eid goodie bags for children after Mosque tragedy
-
Milwaukee, WI38 minutes agoWhat is treatment court? Milwaukee County celebrates graduates
