2017, DDOS and Hacking - Cyber Security Informer

KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS

Krebs on Security

MAY 20, 2025

KrebsOnSecurity last week was hit by a near record distributed denial-of-service (DDoS) attack that clocked in at more than 6.3 The Aisuru botnet comprises a globally-dispersed collection of hacked IoT devices, including routers, digital video recorders and other systems that are commandeered via default passwords or software vulnerabilities.

DDOS

DDOS IoT Internet Internet

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Krebs on Security

FEBRUARY 28, 2025

Intrinsec said its analysis showed Prospero frequently hosts malware operations such as SocGholish and GootLoader , which are spread primarily via fake browser updates on hacked websites and often lay the groundwork for more serious cyber intrusions — including ransomware. A fake browser update page pushing mobile malware.

Malware

Malware Antivirus Software DDOS

Owners of DDoS-for-Hire Service vDOS Get 6 Months Community Service

Krebs on Security

JUNE 7, 2020

The co-owners of vDOS , a now-defunct service that for four years helped paying customers launch more than two million distributed denial-of-service (DDoS) attacks that knocked countless Internet users and websites offline, each have been sentenced to six months of community service by an Israeli court. vDOS as it existed on Sept.

DDOS

DDOS Internet Internet Advertising

Courts Hand Down Hard Jail Time for DDoS

Krebs on Security

JANUARY 14, 2019

On Friday, a 34-year-old Connecticut man received a whopping 10-year prison sentence for carrying out distributed denial-of-service (DDoS) attacks against a number of hospitals in 2014. Daniel Kaye. Photo: National Crime Agency. Daniel Kaye , an Israel-U.K. to face charges there.

DDOS

DDOS Internet Internet Spyware

Google mitigated a 2.54 Tbps DDoS attack in 2017, the largest DDoS ever seen

Security Affairs

OCTOBER 16, 2020

The Google Cloud team revealed that in September 2017 it has mitigated DDoS attack that reached 2.54 Tbps, the largest DDoS attack of ever. The Google Cloud team revealed that back in September 2017 it has mitigated a powerful DDoS attack that clocked at 2.54 “Our infrastructure absorbed a 2.5

DDOS

DDOS DNS Advertising Engineering

Cloudflare blocked a record-breaking 5.6 Tbps DDoS attack

Security Affairs

JANUARY 22, 2025

terabit-per-second (Tbps) distributed denial-of-service (DDoS) attack. Terabit per second (Tbps) DDoS attack, which is the largest attack ever reported. The previous largest DDoS attack blocked by Cloudflare occurred in October 2024 and peaked at 3.8 Cloudflare announced that it has blocked a record-breaking 5.6

DDOS

DDOS Malware Internet Internet

Email Provider VFEmail Suffers ‘Catastrophic’ Hack

Krebs on Security

FEBRUARY 12, 2019

I wrote about the company in 2015 after it suffered a debilitating distributed denial-of-service (DDoS) attack after Romero declined to pay a ransom demand from an online extortion group. Another series of DDoS attacks in 2017 forced VFEmail to find a new hosting provider. based ISP Staminus come to mind).

Hacking

Hacking DDOS Backups Accountability

UK Ad Campaign Seeks to Deter Cybercrime

Krebs on Security

MAY 28, 2020

The United Kingdom’s anti-cybercrime agency is running online ads aimed at young people who search the Web for services that enable computer crimes, specifically trojan horse programs and DDoS-for-hire services. ’s National Crime Agency , which saw success with a related campaign for six months starting in December 2017.

Cybercrime

Cybercrime DDOS Advertising Hacking

New Lucifer DDoS botnet targets Windows systems with multiple exploits

Security Affairs

JUNE 26, 2020

A new botnet, tracked as Lucifer, appeared in the threat landscape, it leverages close to a dozen exploits to hack Windows systems. Upon infecting a system the bot turns it into a cryptomining client and could use it to launch distributed denial-of-service (DDoS) attacks. ” reads the report published by the Unit42 team.

DDOS

DDOS Malware Advertising Passwords

Developer of DDoS Mirai based botnets sentenced to prison

Security Affairs

JUNE 26, 2020

A man accused to have developed distributed denial of service (DDoS) botnets based on the Mirai botnet was sentenced to 13 months in federal prison. Schuchman compromised hundreds of thousands of IoT devices, including home routers and IP cameras, to create multiple DDoS IoT botnets that he rented to carry out the attacks.

DDOS

DDOS IoT Advertising Internet

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. SecurityAffairs – hacking, Enemybot).

DDOS

DDOS Architecture Malware Cybercrime

250 Webstresser Users to Face Legal Action

Krebs on Security

FEBRUARY 1, 2019

Webstresser.org (formerly Webstresser.co), as it appeared in 2017. “Size does not matter – all levels of users are under the radar of law enforcement, be it a gamer booting out the competition out of a game, or a high-level hacker carrying out DDoS attacks against commercial targets for financial gain,” Europol officials warned.

Computers and Electronics

Computers and Electronics DDOS Internet Internet

The operator of DDoS-for-hire service pleads guilty

Security Affairs

MARCH 3, 2019

Usatyuk developed and operated other DDoS-for-hire services with a co-conspirator between August 2015 and November 2017. 12, 2017, an advertising on the ExoStresser website ( exostress.in) said that the booter service alone had launched 1,367,610 DDoS attacks, and caused targeted victim computer systems to suffer 109,186.4

DDOS

DDOS Cybercrime Advertising Cyber Attacks

DDoS-for-Hire Services operator sentenced to 13 months in prison

Security Affairs

NOVEMBER 15, 2019

the administrator of DDoS-for-hire services was sentenced to 13 months in prison, and additional three years of supervised release. Usatyuk , a man that was operating several DDoS-for-hire services was sentenced to 13 months in prison, and additional three years of supervised release. Sergiy P. , hours of network downtime.

DDOS

DDOS Computers and Electronics Advertising Internet

This Service Helps Malware Authors Fix Flaws in their Code

Krebs on Security

MAY 18, 2020

Almost daily now there is news about flaws in commercial software that lead to computers getting hacked and seeded with malware. But the reality is most malicious software also has its share of security holes that open the door for security researchers or ne’er-do-wells to liberate or else seize control over already-hacked systems.

Malware

Malware Cybercrime Ransomware Marketing

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. Image: SentinelOne.com.

DDOS

DDOS Internet Internet Government

Mirai Co-Author Gets 6 Months Confinement, $8.6M in Fines for Rutgers Attacks

Krebs on Security

OCTOBER 26, 2018

According to sentencing memo submitted by government prosecutors, in his freshman and sophomore years at Rutgers Jha used a collection of hacked devices to launch at least four distributed denial-of-service (DDoS) attacks against the university’s networks. Paras Jha, a 22-year-old computer whiz from Fanwood, N.J.,

DDOS

DDOS Government Malware Internet

Bitcoin Core Team fixes a critical DDoS flaw in wallet software

Security Affairs

SEPTEMBER 25, 2018

Bitcoin Core Software fixed a critical DDoS attack vulnerability in the Bitcoin Core wallet software tracked as CVE-2018-17144. The bug seems to have been introduced in March 2017, but no one apparently has exploited the flaw in live attacks. It has been estimated that a successful DDoS attack on the BTC network would cost miners 12.5

DDOS

DDOS Software Advertising Hacking

Bot list with Telnet credentials for more than 500,000 servers and IoT devices leaked online

Security Affairs

JANUARY 19, 2020

According to ZDNet that first published the news, the list was leaked on a popular hacking forum by the operator of a DDoS booter service. “As ZDNet understands, the list was published online by the maintainer of a DDoS-for-hire (DDoS booter ) service.” SecurityAffairs – Telnet credentials, hacking).

IoT

IoT DDOS InfoSec Internet

Amazon Echo and Google Nest can be hacked and used to steal data

CyberSecurity Insiders

AUGUST 1, 2022

have discovered that smart home products such as Google Nest and Amazon Echo smart speaker can be hacked at any moment as security patch updates have been stopped to such devices from the past three years and so they are or might have already fallen prey to hackers. Security researchers from the consumer group ‘Which?’ NOTE- Which?

Hacking

Hacking DDOS Scams Media

HinataBot, a new Go-Based DDoS botnet in the threat landscape

Security Affairs

MARCH 17, 2023

A new Golang-based DDoS botnet, tracked as HinataBot, targets routers and servers by exploiting known vulnerabilities. Akamai researchers spotted a new DDoS Golang-based botnet, dubbed HinataBot, which has been observed exploiting known flaws to compromise routers and servers.

DDOS

DDOS Passwords Engineering Hacking

Former Russian Cybersecurity Chief Sentenced to 22 Years in Prison

Krebs on Security

FEBRUARY 26, 2019

Following their dramatic arrests in 2016, many news media outlets reported that the men were suspected of having tipped off American intelligence officials about those responsible for Russian hacking activities tied to the 2016 U.S. presidential election.

Cybersecurity

Cybersecurity Cybercrime Media Antivirus

China used the Great Cannon DDoS Tool against forum used by Hong Kong protestors

Security Affairs

DECEMBER 5, 2019

China is accused to have used the “Great Cannon” DDoS tool to launch attacks against LIHKG , a forum used by Hong Kong residents to organize protests. The last time the Great Cannon was used by the Chinese authorities was in 2017 when it was involved in DDoS attacks on the Mingjingnews.com site, a US-based Chinese media outlet.

DDOS

DDOS Firewall Advertising Government

New EwDoor Botnet is targeting AT&T customers

Security Affairs

NOVEMBER 30, 2021

The attackers are targeting Edgewater Networks’ devices by exploiting the CVE-2017-6079 vulnerability with a relatively unique mount file system command. The bot supports the following functions: Self updating Port scanning File management DDoS attack Reverse SHELL Execute arbitrary commands. Pierluigi Paganini.

DDOS

DDOS Backups Encryption Engineering

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

Security Affairs

AUGUST 27, 2020

While security experts have been aware of printer vulnerabilities for quite a while, even previous large-scale attacks on printers like the Stackoverflowin hack in 2017 and the PewDiePie hack in 2018 did not seem to shock the public into securing their networked devices. SecurityAffairs – hacking, printers).

Hacking

Hacking IoT Firmware Internet

‘Satori’ IoT Botnet Operator Pleads Guilty

Krebs on Security

SEPTEMBER 3, 2019

has pleaded guilty to federal hacking charges tied to his role in operating the “ Satori ” botnet, a crime machine powered by hacked Internet of Things (IoT) devices that was built to conduct massive denial-of-service attacks targeting Internet service providers, online gaming platforms and Web hosting companies.

IoT

IoT Internet Internet Hacking

Alleged ‘Satori’ IoT Botnet Operator Sought Media Spotlight, Got Indicted

Krebs on Security

SEPTEMBER 2, 2018

A 20-year-old from Vancouver, Washington was indicted last week on federal hacking charges and for allegedly operating the “ Satori ” botnet, a malware strain unleashed last year that infected hundreds of thousands of wireless routers and other “Internet of Things” (IoT) devices.

IoT

IoT Media DDOS Internet

NEW TECH: Baffin Bay Networks takes a ‘cloud-first’ approach to securing web applications

The Last Watchdog

SEPTEMBER 10, 2019

Related: How 5G will escalate DDoS attacks Caught in the pull of digital transformation , companies are routing ever more core operations and services through the Internet, or, more precisely, through IP addresses, of one kind or another. Meanwhile, DDoS attacks are renowned for causing massive outages.

DDOS

DDOS Internet Internet Digital transformation

Go-based Chaos malware is rapidly growing targeting Windows, Linux and more

Security Affairs

SEPTEMBER 29, 2022

. “Chaos functionality includes the ability to enumerate the host environment, run remote shell commands, load additional modules, automatically propagate through stealing and brute forcing SSH private keys, as well as launch DDoS attacks.” SecurityAffairs – hacking, Chaos malware). ” continues the report.

Malware

Malware DDOS Architecture Financial Services

Taiwan Government websites suffered DDoS attacks during the Nancy Pelosi visit

Security Affairs

AUGUST 4, 2022

Major Taiwan government websites were temporarily forced offline by distributed denial of service (DDoS) attacks attacks during the visit to Taipei of US House Speaker Nancy Pelosi. SecurityAffairs – hacking, Taiwan). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

DDOS

DDOS Government Cyber Attacks Hacking

Creator of multiple IoT botnets, including Satori, pleaded guilty

Security Affairs

SEPTEMBER 4, 2019

Kenneth Currin Schuchman (21) from Vancouver, Washington pleaded guilty to creating and operating multiple DDoS IoT botnet , including Satori. Kenneth Currin Schuchman (21) from Vancouver, Washington, aka Nexus Zeta, pleaded guilty to creating and operating multiple DDoS IoT botnets.

IoT

IoT DDOS Internet Internet

Hacker is targeting DNA sequencer applications from Iranian IP address

Security Affairs

JUNE 17, 2019

The attackers are leveraging a still-unpatched zero-day vulnerability, tracked as CVE-2017-6526 , to gain full control over the targeted systems. The vulnerability in dnaLIMS was reported to the vendor in 2017, but it is still unpatched. As a result,the number of such devices is not very high and might not help greatly in DDoS.”

DDOS

DDOS Advertising IoT Marketing

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

Krebs on Security

MARCH 22, 2022

years in a Russian penal colony for convincing one of his top affiliates to launch a distributed denial-of-service (DDoS) attack against a competitor that shut down the ticketing system for the state-owned Aeroflot airline. A Google-translated snippet of the hacked ChronoPay Confluence installation. Click to enlarge.

Banking

Banking Marketing DDOS Risk

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

MAY 30, 2022

The botnet was first discovered by Fortinet in March, the DDoS botnet targeted several routers and web servers by exploiting known vulnerabilities. The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion. SecurityAffairs – hacking, EnemyBot). LFI CVE-2018-16763 Fuel CMS 1.4.1

Malware

Malware DDOS IoT Cybercrime

A new Zerobot variant spreads by exploiting Apache flaws

Security Affairs

DECEMBER 22, 2022

com) with links to the bot was among the 48 domains associated with DDoS-for-hire services seized by the FBI in December. The most recent variant spotted by Microsoft spreads by exploiting vulnerabilities in Apache and Apache Spark ( CVE-2021-42013 and CVE-2022-33891 respectively) and also supports new DDoS attack capabilities.

IoT

IoT DDOS Malware Firmware

Hackers targeting Drupal vulnerabilities to install the Shellbot Backdoor

Security Affairs

OCTOBER 12, 2018

The bot included multiple tools to carry out distributed denial-of-service (DDoS) attacks and scan for SQL injection weaknesses and other vulnerabilities, including privilege escalation issues. Security Affairs – Drupal, hacking ). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Advertising

Advertising DDOS Cyber Attacks Internet

Imperva data Breach: WAF customers’ data exposed

Security Affairs

AUGUST 27, 2019

Incapsula , is a CDN service designed to protect customers’ website from all threats and mitigate DDoS attacks essential infrastructure. Elements of our Incapsula customer database through September 15, 2017 were exposed. “We want to be very clear that this data exposure is limited to our Cloud WAF product.”

Data breaches

Data breaches Firewall Passwords Advertising

Security Affairs newsletter Round 261

Security Affairs

APRIL 26, 2020

SecurityAffairs – newsletter, hacking). Are Maze operators behind the attack on the IT services giant Cognizant? Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Hacking

Hacking Spyware Advertising Antivirus

FoxBlade malware targeted Ukrainian networks hours before Russia’s invasion

Security Affairs

FEBRUARY 28, 2022

“This trojan can use your PC for distributed denial-of-service (DDoS) attacks without your knowledge.” SecurityAffairs – hacking, FoxBlade). ” reads the advisory published by Microsoft. ” FoxBlade is the third malware that was discovered at this time which was involved in attacks against Ukrainian entities.

Malware

Malware DDOS Government Technology

DirtyMoe botnet infected 100,000+ Windows systems in H1 2021

Security Affairs

JUNE 22, 2021

The Windows botnet has been active since late 2017, it was mainly used to mine cryptocurrency, but it was also involved in DDoS attacks in 2018. SecurityAffairs – hacking, botnet). Experts defined DirtyMoe as a complex malware that has been designed as a modular system. Follow me on Twitter: @securityaffairs and Facebook.

DNS

DNS Cryptocurrency Internet Malware

Beastmode Mirai botnet now includes exploits for Totolink routers

Security Affairs

APRIL 2, 2022

Operators behind the Mirai-based distributed denial-of-service (DDoS) botnet Beastmode (aka B3astmode) added exploits for Totolink routers. The Mirai -based distributed denial-of-service (DDoS) botnet Beastmode (aka B3astmode) now includes exploits for Totolink routers. CVE-2017-17215 targets Huawei HG532 routers.

DDOS

DDOS Firmware Surveillance IoT

Imperva explains how hackers stole AWS API Key and accessed to customer data

Security Affairs

OCTOBER 14, 2019

Incapsula , is a CDN service designed to protect customers’ website from all threats and mitigate DDoS attacks. Here is what we know about the situation today: On August 20, 2019, we learned from a third party of a data exposure that impacts a subset of customers of our Cloud WAF product who had accounts through September 15, 2017.

Firewall

Firewall Passwords Accountability Data breaches

The author of the Mirai botnet gets six months of house arrest

Security Affairs

OCTOBER 30, 2018

million in compensation for DDoS attacks against the systems of Rutgers University. million in compensation for DDoS attacks against the systems of Rutgers University. million in compensation for DDoS attacks against the systems of Rutgers University.

DDOS

DDOS IoT Advertising Malware

Necro Python bot now enhanced with new VMWare, server exploits

Security Affairs

JUNE 4, 2021

Talos experts noticed that a version released on May 18 included Python versions of EternalBlue ( CVE-2017-0144 ) and EternalRomance ( CVE-2017-0147 ) exploits with a Windows download command line as the payload. SecurityAffairs – hacking, Necro Python bot). ” continues the post. Pierluigi Paganini.

Malware

Malware DDOS Passwords IoT

KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Trending Sources

Owners of DDoS-for-Hire Service vDOS Get 6 Months Community Service

Courts Hand Down Hard Jail Time for DDoS

Google mitigated a 2.54 Tbps DDoS attack in 2017, the largest DDoS ever seen

Cloudflare blocked a record-breaking 5.6 Tbps DDoS attack

Email Provider VFEmail Suffers ‘Catastrophic’ Hack

UK Ad Campaign Seeks to Deter Cybercrime

New Lucifer DDoS botnet targets Windows systems with multiple exploits

Developer of DDoS Mirai based botnets sentenced to prison

Enemybot, a new DDoS botnet appears in the threat landscape

250 Webstresser Users to Face Legal Action

The operator of DDoS-for-hire service pleads guilty

DDoS-for-Hire Services operator sentenced to 13 months in prison

This Service Helps Malware Authors Fix Flaws in their Code

Stark Industries Solutions: An Iron Hammer in the Cloud

Mirai Co-Author Gets 6 Months Confinement, $8.6M in Fines for Rutgers Attacks

Bitcoin Core Team fixes a critical DDoS flaw in wallet software

Bot list with Telnet credentials for more than 500,000 servers and IoT devices leaked online

Amazon Echo and Google Nest can be hacked and used to steal data

HinataBot, a new Go-Based DDoS botnet in the threat landscape

Former Russian Cybersecurity Chief Sentenced to 22 Years in Prison

China used the Great Cannon DDoS Tool against forum used by Hong Kong protestors

New EwDoor Botnet is targeting AT&T customers

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

‘Satori’ IoT Botnet Operator Pleads Guilty

Alleged ‘Satori’ IoT Botnet Operator Sought Media Spotlight, Got Indicted

NEW TECH: Baffin Bay Networks takes a ‘cloud-first’ approach to securing web applications

Go-based Chaos malware is rapidly growing targeting Windows, Linux and more

Taiwan Government websites suffered DDoS attacks during the Nancy Pelosi visit

Creator of multiple IoT botnets, including Satori, pleaded guilty

Hacker is targeting DNA sequencer applications from Iranian IP address

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

EnemyBot malware adds new exploits to target CMS servers and Android devices

A new Zerobot variant spreads by exploiting Apache flaws

Hackers targeting Drupal vulnerabilities to install the Shellbot Backdoor

Imperva data Breach: WAF customers’ data exposed

Security Affairs newsletter Round 261

FoxBlade malware targeted Ukrainian networks hours before Russia’s invasion

DirtyMoe botnet infected 100,000+ Windows systems in H1 2021

Beastmode Mirai botnet now includes exploits for Totolink routers

Imperva explains how hackers stole AWS API Key and accessed to customer data

The author of the Mirai botnet gets six months of house arrest

Necro Python bot now enhanced with new VMWare, server exploits

Stay Connected