#botnets
#botnets

Information security

CrowdStrike, Google shatter Glassworm botnet

Privacy professionals

fromArs Technica

8 hours ago

Botnet of more than 17 million devices dismantled

A Dutch joint operation dismantled a botnet of over 17 million devices managed by 200 servers and took it offline due to criminal use.

fromtheregister

CrowdStrike, Google shatter Glassworm botnet

Glassworm botnet was disrupted by severing command-and-control channels, stopping credential theft and malicious payload delivery targeting developers via poisoned packages.

Information security

CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks | TechCrunch

fromComputerWeekly.com

Information security

Glassworm botnet that targeted OS devs smashed to pieces | Computer Weekly

Information security

CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline

China-linked crews turn routers into covert attack proxies

China-linked threat actors exploit compromised routers and IoT devices to create proxy networks for cyber intrusions and data theft.

Privacy professionals

fromWIRED

Cyberattack on a Car Breathalyzer Firm Leaves Drivers Stuck

Law enforcement dismantled major botnets while new vulnerabilities and privacy issues in tech continue to emerge, raising concerns over security.

fromwww.dw.com

Germany: Police dismantle major cyberattack 'botnets'

Investigators shut down Aisuru and Kimwolf botnets, which used millions of infected devices for large-scale DDoS attacks, posing significant threats to IT infrastructure.

fromTechCrunch

CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks | TechCrunch

Glassworm botnet takedown disrupted malware and password theft targeting open-source developers and supply-chain trust.

fromComputerWeekly.com

Glassworm botnet that targeted OS devs smashed to pieces | Computer Weekly

Glassworm was disrupted by coordinated takedown of its command-and-control infrastructure, stopping malicious payload delivery and underscoring developer-targeted supply-chain risk.

CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline

CISA added four vulnerabilities to its KEV catalog, indicating active exploitation affecting SimpleHelp, Samsung MagicINFO 9 Server, and D-Link routers.

China-linked crews turn routers into covert attack proxies

China-linked threat actors exploit compromised routers and IoT devices to create proxy networks for cyber intrusions and data theft.

Privacy professionals

fromWIRED

Cyberattack on a Car Breathalyzer Firm Leaves Drivers Stuck

Law enforcement dismantled major botnets while new vulnerabilities and privacy issues in tech continue to emerge, raising concerns over security.

fromwww.dw.com

Germany: Police dismantle major cyberattack 'botnets'

Investigators shut down Aisuru and Kimwolf botnets, which used millions of infected devices for large-scale DDoS attacks, posing significant threats to IT infrastructure.

Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos

A poisoned VS Code extension led to GitHub repository exfiltration, showing evolving software supply chain threats and smarter phishing and botnet activity.

#ddos

fromSecurityWeek

Canada news

Canadian Man Arrested for Operating Kimwolf Botnet

Canada news

Kimwolf DDoS Botnet Operator Arrested in Canada Over DDoS-for-Hire Attacks

7 months ago

Information security

Cyber experts have been warning about AI-powered DDoS attacks - now they're becoming a reality

fromthehackernews.com

Information security

Tech Overtakes Gaming as Top DDoS Attack Target, New Gcore Radar Report Finds

fromTechzine Global

Information security

Cloudflare blocks record attack of 22.2 Tbps

Information security

DDoSing is big and getting bigger - let's kill it off

fromSecurityWeek

Canada news

Canadian Man Arrested for Operating Kimwolf Botnet

Canada news

Kimwolf DDoS Botnet Operator Arrested in Canada Over DDoS-for-Hire Attacks

7 months ago

Information security

Cyber experts have been warning about AI-powered DDoS attacks - now they're becoming a reality

fromthehackernews.com

Information security

Tech Overtakes Gaming as Top DDoS Attack Target, New Gcore Radar Report Finds

fromTechzine Global

Information security

Cloudflare blocks record attack of 22.2 Tbps

Information security

DDoSing is big and getting bigger - let's kill it off

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

Threat actors exploit vulnerabilities in TBK DVR and TP-Link routers to deploy Mirai-botnet variants, targeting IoT devices for large-scale attacks.

DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS Attacks

The U.S. Department of Justice disrupted several IoT botnets, including AISURU and Kimwolf, in a coordinated international law enforcement operation.

fromSecurityWeek

New Keenadu Android Malware Found on Thousands of Devices

Researchers at Kaspersky have analyzed a recently discovered Android malware that enables its operators to remotely control compromised devices. Dubbed Keenadu, the backdoor has been found in the firmware of various Android device brands, particularly tablets. While in some cases the malware appears to have been injected into the firmware during development, it has also been delivered to devices via OTA firmware updates.

Information security

#ddos-attacks

Information security

DDoS deluge: Brit biz battered by record botnet blitz

10 months ago

E-Commerce

Application layer DDoS attacks are skyrocketing - here's why

Information security

DDoS deluge: Brit biz battered by record botnet blitz

10 months ago

E-Commerce

Application layer DDoS attacks are skyrocketing - here's why

more#ddos-attacks

Google cripples IPIDEA proxy network abused by crims

Google's Threat Intelligence Group (GTIG) describes IPIDEA as a "little-known component of the digital ecosystem" and says that in a seven-day period in January 2026, it observed more than 550 threat groups using IPIDEA exit nodes. GTIG said that proxy network operators sometimes pay app developers to embed proxy SDKs so that any device that downloads the app is enrolled in the network.

Information security

5 months ago

'Botnets in physical form' are top humanoid robot risk

AI-infused humanoid robots present severe security risks; unsecured robots could be wormable physical botnets, requiring immediate built-in security and a new security industry.

6 months ago

Experts Reports Sharp Increase in Automated Botnet Attacks Targeting PHP Servers and IoT Devices

The cybersecurity company said PHP servers have emerged as the most prominent targets of these attacks owing to the widespread use of content management systems like WordPress and Craft CMS. This, in turn, creates a large attack surface as many PHP deployments can suffer from misconfigurations, outdated plugins and themes, and insecure file storage. Some of the prominent weaknesses in PHP frameworks that have been exploited by threat actors are listed below - CVE-2017-9841 - A Remote code execution vulnerability in PHPUnit CVE-2021-3129 - A Remote code execution vulnerability in Laravel CVE-2022-47945 - A Remote code execution vulnerability in ThinkPHP Framework

Information security

Miscellaneous