Microsoft took down the Waledac botnet two years ago in a high-profile takedown led by Microsoft. Palo Alto Networks researchers say a new version of the Storm botnet has added a malicious element to its spamming. The new malware can sniff for FTP, POP3, and SMTP user credentials, as well as pilfer files for FTP and BitCoin.dat files. Microsoft: Botnet takedown is akin to stopping an outbreak or an epidemic of a disease, which is not the same thing as curing the disease.”]
Source: https://www.darkreading.com/attacks-breaches/new-waledac-variant-goes-rogue