#botnet
#botnet

Information security

New Win-DDoS Flaws Let Attackers Turn Public Domain Controllers into DDoS Botnet via RPC, LDAP

Privacy technologies

Google sues 25 alleged BadBox 2.0 botnet operators

8 months ago

Privacy professionals

RondoDox Botnet Exploits Flaws in TBK DVRs and Four-Faith Routers to Launch DDoS Attacks

Growth hacking

CISO who helped unmask Badbox warns: Version 3 is coming

Badbox 2.0, a sophisticated botnet targeting smart devices, may launch new attacks despite efforts from security teams to disrupt its operations.

Information security

New botnet creates permanent backdoors in ASUS routers

The AyySSHush malware compromises ASUS routers and other devices, forming a botnet network that poses a significant cybersecurity threat.

Roam Research

fromArs Technica

5 days ago

14,000 routers are infected by malware that's highly resistant to takedowns

A 14,000-device botnet called KadNap primarily compromises unpatched Asus routers to create a takedown-resistant proxy network for cybercrime using peer-to-peer Kademlia architecture.

Information security

New Win-DDoS Flaws Let Attackers Turn Public Domain Controllers into DDoS Botnet via RPC, LDAP

Privacy technologies

Google sues 25 alleged BadBox 2.0 botnet operators

8 months ago

Privacy professionals

RondoDox Botnet Exploits Flaws in TBK DVRs and Four-Faith Routers to Launch DDoS Attacks

Growth hacking

CISO who helped unmask Badbox warns: Version 3 is coming

Badbox 2.0, a sophisticated botnet targeting smart devices, may launch new attacks despite efforts from security teams to disrupt its operations.

Information security

New botnet creates permanent backdoors in ASUS routers

The AyySSHush malware compromises ASUS routers and other devices, forming a botnet network that poses a significant cybersecurity threat.

Information security

KadNap Malware Infects 14,000+ Edge Devices to Power Stealth Proxy Botnet

fromPCWorld

Privacy technologies

Google wants to kill a massive Android TV botnet with lawyers

6 days ago

Information security

KadNap Malware Infects 14,000+ Edge Devices to Power Stealth Proxy Botnet

fromPCWorld

Privacy technologies

Google wants to kill a massive Android TV botnet with lawyers

Aeternum C2 Botnet Stores Encrypted Commands on Polygon Blockchain to Evade Takedown

Aeternum C2 botnet uses Polygon blockchain for command-and-control infrastructure, making it resistant to traditional takedown methods by storing instructions on immutable public ledgers.

#ddos

Information security

AISURU/Kimwolf Botnet Launches Record-Setting 31.4 Tbps DDoS Attack

Information security

Polish cops bail 20-year-old bedroom botnet operator

Information security

Aisuru botnet breaks DDoS record with 31.4 Tbps attack

Information security

Kimwolf Botnet Hijacks 1.8 Million Android TVs, Launches Large-Scale DDoS Attacks

Information security

Record-Breaking DDoS Attack Peaks at 22 Tbps and 10 Bpps

Information security

ShadowV2 Botnet Exploits Misconfigured AWS Docker Containers for DDoS-for-Hire Service

Information security

AISURU/Kimwolf Botnet Launches Record-Setting 31.4 Tbps DDoS Attack

Information security

Polish cops bail 20-year-old bedroom botnet operator

Information security

Aisuru botnet breaks DDoS record with 31.4 Tbps attack

Information security

Kimwolf Botnet Hijacks 1.8 Million Android TVs, Launches Large-Scale DDoS Attacks

Information security

Record-Breaking DDoS Attack Peaks at 22 Tbps and 10 Bpps

Information security

ShadowV2 Botnet Exploits Misconfigured AWS Docker Containers for DDoS-for-Hire Service

Information security

SystemBC Infects 10,000 Devices After Defying Law Enforcement Takedown

Information security

SystemBC Powers REM Proxy With 1,500 Daily VPS Victims Across 80 C2 Servers

Information security

SystemBC Infects 10,000 Devices After Defying Law Enforcement Takedown

Information security

SystemBC Powers REM Proxy With 1,500 Daily VPS Victims Across 80 C2 Servers

more#systembc

Google Disrupts IPIDEA - One of the World's Largest Residential Proxy Networks

Residential proxy networks have become a pervasive tool for everything from high-end espionage to massive criminal schemes,

Information security

Researchers Null-Route Over 550 Kimwolf and Aisuru Botnet Command Servers

The Black Lotus Labs team at Lumen Technologies said it null-routed traffic to more than 550 command-and-control (C2) nodes associated with the AISURU/Kimwolf botnet since early October 2025. AISURU and its Android counterpart, Kimwolf, have emerged as some of the biggest botnets in recent times, capable of directing enslaved devices to participate in distributed denial-of-service (DDoS) attacks and relay malicious traffic for residential proxy services.

Information security

GoBruteforcer Botnet Targets Crypto Project Databases by Exploiting Weak Credentials

GoBruteforcer compromises crypto and blockchain project servers to build a botnet that brute-forces FTP, MySQL, PostgreSQL, and phpMyAdmin credentials.

#android

Information security

Kimwolf Android Botnet Infects Over 2 Million Devices via Exposed ADB and Proxy Networks

Information security

Kimwolf botnet affects 2 million Android devices

Information security

Kimwolf Android Botnet Infects Over 2 Million Devices via Exposed ADB and Proxy Networks

Information security

Kimwolf botnet affects 2 million Android devices

PolarEdge Targets Cisco, ASUS, QNAP, Synology Routers in Expanding Botnet Campaign

PolarEdge is a TLS-based ELF backdoor that infects routers to form an ORB-like botnet, sending host fingerprints and accepting commands over mbedTLS.

#rondodox

Information security

Researchers Warn RondoDox Botnet is Weaponizing Over 50 Flaws Across 30+ Vendors

Information security

RondoDox Botnet Takes 'Exploit Shotgun' Approach

Information security

Researchers Warn RondoDox Botnet is Weaponizing Over 50 Flaws Across 30+ Vendors

Information security

RondoDox Botnet Takes 'Exploit Shotgun' Approach

TOR-Based Cryptojacking Attack Expands Through Misconfigured Docker APIs

A TOR-based cryptojacking campaign exploits exposed Docker APIs to deploy miners, establish persistence, scan for other Docker instances, and potentially build a botnet.

Node JS

New PumaBot Botnet Targets Linux IoT Devices to Steal SSH Credentials and Mine Crypto

A new Go-based botnet, PumaBot, targets IoT devices with brute-force SSH attacks to expand and deliver malware.

New HTTPBot Botnet Launches 200+ Precision DDoS Attacks on Gaming and Tech Sectors

Over the past few months, it has expanded aggressively, continuously leveraging infected devices to launch external attacks.

Tech industry

#cybercrime

fromNextgov.com

Privacy professionals

US and Netherlands seize network providers that helped hackers mask activities

The FBI and Dutch National Police have shut down key proxy services used by cybercriminals.

fromTechCrunch

Roam Research

FBI and Dutch police seize and shut down botnet of hacked routers | TechCrunch

Operation Moonlander successfully shut down botnet services and indicted four individuals due to compromised internet-connected devices.

Privacy professionals

fromNextgov.com

US and Netherlands seize network providers that helped hackers mask activities

The FBI and Dutch National Police have shut down key proxy services used by cybercriminals.

Roam Research

fromTechCrunch