FBI forced Flax Typhoon to abandon its botnet 2024-09-19 at 14:16 By Zeljka Zorz A botnet operated by the Chinese state-sponsored threat actor known as Flax Typhoon has been disrupted by the law enforcement agency and abandoned by the group, FBI Director Chris Wray confirmed on Wednesday. “We executed court-authorized operations to take control of […]
React to this headline:
FBI forced Flax Typhoon to abandon its botnet Read More »
US Disrupts ‘Raptor Train’ Botnet of Chinese APT Flax Typhoon 2024-09-19 at 13:16 By Eduard Kovacs The US government has announced the disruption of Raptor Train, a Flax Typhoon botnet powered by hacked consumer devices. The post US Disrupts ‘Raptor Train’ Botnet of Chinese APT Flax Typhoon appeared first on SecurityWeek. This article is an
React to this headline:
US Disrupts ‘Raptor Train’ Botnet of Chinese APT Flax Typhoon Read More »
Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military 2024-09-18 at 20:16 By Ryan Naraine Black Lotus Labs estimates that more than 200,000 routers, network-attached storage servers, and IP cameras have been ensnared in the botnet. The post Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military
React to this headline:
Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military Read More »
Microsoft: DDoS defense error amplified attack on Azure, leading to outage 2024-07-31 at 13:46 By Zeljka Zorz A DDoS attack that started on Tuesday has made a number of Microsoft Azure and Microsoft 365 services temporarily inaccessible, the company has confirmed. Microsoft’s mitigation statement on the Azure status history page Microsoft Azure, 365 outage triggered
React to this headline:
Microsoft: DDoS defense error amplified attack on Azure, leading to outage Read More »
Recent Zyxel NAS Vulnerability Exploited by Botnet 2024-06-25 at 16:46 By Ionut Arghire A Mirai-like botnet has started exploiting a critical-severity vulnerability in discontinued Zyxel NAS products. The post Recent Zyxel NAS Vulnerability Exploited by Botnet appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this
React to this headline:
Recent Zyxel NAS Vulnerability Exploited by Botnet Read More »
Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers 2024-05-31 at 14:46 By Ionut Arghire Over 600,000 SOHO routers belonging to a single ISP and infected with the Chalubo trojan were rendered inoperable. The post Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers appeared first on SecurityWeek. This article is an excerpt
React to this headline:
Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers Read More »
Massive 911 S5 Botnet Dismantled, Chinese Mastermind Arrested 2024-05-30 at 15:01 By Eduard Kovacs The US announced that the 911 S5 (Cloud Router) botnet, likely the world’s largest, has been dismantled and its administrator arrested. The post Massive 911 S5 Botnet Dismantled, Chinese Mastermind Arrested appeared first on SecurityWeek. This article is an excerpt from
React to this headline:
Massive 911 S5 Botnet Dismantled, Chinese Mastermind Arrested Read More »
US Sanctions Three Chinese Men for Operating 911 S5 Botnet 2024-05-29 at 17:01 By Eduard Kovacs The US government has announced sanctions against three Chinese nationals accused of creating and operating the 911 S5 proxy botnet. The post US Sanctions Three Chinese Men for Operating 911 S5 Botnet appeared first on SecurityWeek. This article is
React to this headline:
US Sanctions Three Chinese Men for Operating 911 S5 Botnet Read More »
Ebury botnet compromises 400,000+ Linux servers 2024-05-16 at 07:31 By Help Net Security ESET researchers released its deep-dive investigation into one of the most advanced server-side malware campaigns. It is still growing and has seen hundreds of thousands of compromised servers in its at least 15-year-long operation. The Ebury group and botnet have been involved
React to this headline:
Ebury botnet compromises 400,000+ Linux servers Read More »
400,000 Linux Servers Hit by Ebury Botnet 2024-05-15 at 15:01 By Ionut Arghire The Ebury Linux botnet has ensnared over 400,000 Linux systems in 15 years, with roughly 100,000 still infected. The post 400,000 Linux Servers Hit by Ebury Botnet appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original
React to this headline:
400,000 Linux Servers Hit by Ebury Botnet Read More »
Botnet Disrupted by FBI Still Used by Russian Spies, Cybercriminals 2024-05-03 at 17:09 By Ionut Arghire A botnet dismantled in January and used by Russia-linked APT28 consisted of more than just Ubiquiti Edge OS routers. The post Botnet Disrupted by FBI Still Used by Russian Spies, Cybercriminals appeared first on SecurityWeek. This article is an
React to this headline:
Botnet Disrupted by FBI Still Used by Russian Spies, Cybercriminals Read More »
Researchers Discover 40,000-Strong EOL Router, IoT Botnet 2024-03-26 at 20:46 By Ryan Naraine Malware hunters sound an alarm after discovering a 40,000-strong botnet packed with end-of-life routers and IoT devices being used in cybercriminal activities. The post Researchers Discover 40,000-Strong EOL Router, IoT Botnet appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
React to this headline:
Researchers Discover 40,000-Strong EOL Router, IoT Botnet Read More »
The effects of law enforcement takedowns on the ransomware landscape 2024-03-13 at 17:03 By Zeljka Zorz While the results of law enforcement action against ransomware-as-a-service operators Alphv/BlackCat and LockBit are yet to be fully realized, the August 2023 disruption of the Qakbot botnet has had one notable effect: ransomware affiliates have switched to vulnerability exploitation
React to this headline:
The effects of law enforcement takedowns on the ransomware landscape Read More »
US Government Urges Cleanup of Routers Infected by Russia’s APT28 2024-02-28 at 14:52 By Ionut Arghire The US government says Russia’s APT28 group compromised Ubiquiti EdgeRouters to run cyberespionage operations worldwide. The post US Government Urges Cleanup of Routers Infected by Russia’s APT28 appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS
React to this headline:
US Government Urges Cleanup of Routers Infected by Russia’s APT28 Read More »
Were 3 Million Toothbrushes Really Used for a DDoS Attack? 2024-02-08 at 13:46 By Eduard Kovacs Three million electric toothbrushes were reportedly used for disruptive DDoS attacks, but cybersecurity experts questioned the claims. The post Were 3 Million Toothbrushes Really Used for a DDoS Attack? appeared first on SecurityWeek. This article is an excerpt from
React to this headline:
Were 3 Million Toothbrushes Really Used for a DDoS Attack? Read More »
FritzFrog botnet exploits Log4Shell, PwnKit vulnerabilities 2024-02-01 at 17:31 By Helga Labus The FritzFrog cryptomining botnet has new potential for growth: a recently analyzed variant of the bot is exploiting the Log4Shell (CVE-2021-44228) and PwnKit (CVE-2021-4034) vulnerabilities for lateral movement and privilege escalation. The FritzFrog botnet The FritzFrog botnet, initially identified in August 2020, is
React to this headline:
FritzFrog botnet exploits Log4Shell, PwnKit vulnerabilities Read More »
FBI disrupts Chinese botnet used for targeting US critical infrastructure 2024-02-01 at 15:17 By Helga Labus The FBI has disrupted the KV botnet, used by People’s Republic of China (PRC) state-sponsored hackers (aka “Volt Typhoon”) to target US-based critical infrastructure organizations. A botnet for probing critical infrastructure organizations The threat actors used the KV botnet
React to this headline:
FBI disrupts Chinese botnet used for targeting US critical infrastructure Read More »
Hitron DVR Zero-Day Vulnerabilities Exploited by InfectedSlurs Botnet 2024-01-31 at 12:32 By Ionut Arghire Akamai flags six zero-day vulnerabilities in Hitron DVRs exploited to ensnare devices in the InfectedSlurs botnet. The post Hitron DVR Zero-Day Vulnerabilities Exploited by InfectedSlurs Botnet appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original
React to this headline:
Hitron DVR Zero-Day Vulnerabilities Exploited by InfectedSlurs Botnet Read More »
Cloud Server Abuse Leads to Huge Spike in Botnet Scanning 2024-01-15 at 13:18 By Eduard Kovacs Netscout sees over one million IPs conducting reconnaissance scanning on the web due to increase in use of cheap or free cloud servers. The post Cloud Server Abuse Leads to Huge Spike in Botnet Scanning appeared first on SecurityWeek.
React to this headline:
Cloud Server Abuse Leads to Huge Spike in Botnet Scanning Read More »
CISA Warns of FXC Router, QNAP NVR Vulnerabilities Exploited in the Wild 22/12/2023 at 14:46 By Eduard Kovacs CISA released ICS advisories for FXC router and QNAP NRV flaws and added them to its known exploited vulnerabilities catalog. The post CISA Warns of FXC Router, QNAP NVR Vulnerabilities Exploited in the Wild appeared first on
React to this headline:
CISA Warns of FXC Router, QNAP NVR Vulnerabilities Exploited in the Wild Read More »