The collection of millions of hacked computers known as Aisuru and Kimwolf have been used to launch some of the biggest distributed denial-of-service (DDoS) attacks ever seen. Now United States law enforcement agencies have wiped both of them off the internet along with two of the other hordes of hijacked computers—known as botnets—in a single broad takedown.

On Thursday, the US Department of Justice, working with the cybercrime-fighting agency within the US Department of Defense known as the Defense Criminal Investigative Service, announced that it had dismantled four massive botnets in a single operation, removing the command-and-control servers used to commandeer the hacker-run armies of compromised devices known by the names JackSkid, Mossad, Aisuru, and Kimwolf. Together, operators of the four botnets had amassed more than 3 million devices, the Justice Department said, and often sold access to those devices to other criminal hackers as well as using them to target victims with overwhelming floods of attack traffic to knock websites and internet services offline.

Aisuru and Kimwolf, a distinct but Aisuru-related botnet, had together comprised more than a million devices, according to DDoS defense firm Cloudflare, with Aisuru infecting a variety of devices ranging from DVRs to network appliances to webcams, and its Kimwolf offshoot infecting Android devices including smart TVs and set-top boxes. Cloudflare says the two botnets, working in conjunction, carried out a cyberattack against a Cloudflare customer last November that reached more than 30 terabits of data per second, nearly three times the size of the previous biggest such attack.

No arrests were immediately announced along with the takedowns, but a Justice Department statement noted that the US government was collaborating with Canadian and German authorities, “which targeted individuals who operated these botnets.”

“The United States is steadfast in our commitment to safeguarding critical internet infrastructure and fighting the cybercriminals who jeopardize its security, wherever they might live,” US attorney Michael J. Heyman wrote in a statement.

Of the four botnets taken out in the operation, Aisuru had gained the most notoriety, thanks to a series of record-breaking or near-record cyberattacks it carried out last fall. The botnet, whose use was rented out like many such “booter” services offering their brute-force disruptive capabilities to anyone willing to pay, has been most visibly against gaming services like Minecraft and independent cybersecurity journalist Brian Krebs. Krebs, who has extensively investigated the botnet underground and Aisuru in particular, came under repeated attack from the botnet last year.

Then in November, Cloudflare absorbed a recording-breaking combined attack from Aisuru and Kimwolf that lasted only 35 seconds but reached 31.4 terabits per second, a volume of attack traffic close to triple the size of any seen before. (The company hasn’t revealed which of its customers was hit with that attack.)

In a report on the state of the DDoS ecosystem, Cloudflare described the maximum attack traffic of the combined Aisuru and Kimwolf botnets as equivalent to “the combined populations of the UK, Germany, and Spain all simultaneously typing a website address and then hitting ‘enter’ at the same second.” The botnet was capable, Cloudflare’s analysts wrote, of “launching DDoS attacks that can cripple critical infrastructure, crash most legacy cloud-based DDoS protection solutions, and even disrupt the connectivity of entire nations.”

In fact, all four botnets disrupted by the US operation were variants of Mirai, an internet-of-things botnet that first appeared in 2016, broke records at the time for the size of the cyberattacks it enabled, and eventually was used in an attack on the domain-name service provider Dyn that took down 175,000 websites simultaneously for much of the United States. Mirai’s code base has since served as the starting point for a decade of other internet-of-things botnets.

This week on Uncanny Valley, hosts Brian Barrett and Zoë Schiffer discuss the highlights from Nvidia’s annual developer conference, and why Tesla recently got in trouble with some of its most loyal fans online. Plus, Meta’s initial decision to shut down Horizon Worlds VR on the Quest headset signals the end of the metaverse dream. (Meta has since reversed course, saying it will keep the platform on limited support for the “foreseeable future.”)

A senior Federal Communications Commission official overseeing ABC-owned California stations privately offered to assist FCC Chairman Brendan Carr’s campaign last year against the Walt Disney Co. and Jimmy Kimmel Live!, according to internal emails obtained by WIRED.

On September 17, Carr threatened Disney with regulatory action regarding the Jimmy Kimmel monologue about the assassination of Charlie Kirk, prompting major station affiliates to drop the broadcast and forcing ABC to temporarily suspend the show.

Later that day, Lark Hadley, the FCC West Coast enforcement director, emailed Carr and FCC chief of staff Scott Delacourt. The email, obtained via the Freedom of Information Act, was titled “personal note of support re Charlie Kirk ABC/Disney issue” and quoted Carr’s remarks from an interview with conservative podcaster Benny Johnson: “This is a very, very serious issue right now for Disney. We can do this the easy way or the hard way,” Carr said during the interview.

Noting that he had been a broadcaster himself, Hadley wrote that the “absolute lack of accountability has always confused (and sickened) me,” telling Carr and Delacourt: “Please, do not let up, and let me know if I can help in any way.”

It is highly irregular for a career civil servant and enforcement chief to express support for a politically motivated pressure campaign, or pledge services to a targeted retaliation effort against a broadcaster in their own jurisdiction.

Federal ethics rules prohibit government employees from participating in matters where their impartiality could reasonably be questioned.

Carr’s office did not respond to a request for comment.

While FCC headquarters typically handles television content complaints, Hadley’s office holds direct enforcement authority over physical ABC-owned stations in its jurisdiction, including KABC-TV in Glendale, the broadcast origin for Jimmy Kimmel Live!

The brief suspension of Jimmy Kimmel Live! became a defining test of Carr’s ability to leverage the FCC’s regulatory apparatus against political critics. Following Carr’s public threats, major affiliate networks Nexstar and Sinclair—both of which had multibillion-dollar mergers pending before the commission—refused to air the program, forcing Disney to temporarily pull the show.

An ABC spokesperson did not immediately respond to a request for comment.

Will Creeley, legal director at the Foundation for Individual Rights and Expression, tells WIRED that regional directors like Hadley have no business cheering on the FCC chairman’s regulatory threats against broadcasters that air views the president doesn’t like.

“Just like Brendan Carr, they swore an oath to uphold the Constitution—and that includes the First Amendment, which bars the government from coercing private broadcasters into censoring dissent,” Creeley says. “This is a public servant paid by our taxpayer dollars. Is it too much to ask for him not to sound so excited about the chairman abusing the power of his office?”