DDOS, Hacking and Malware - Cyber Security Informer

KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS

Krebs on Security

MAY 20, 2025

KrebsOnSecurity last week was hit by a near record distributed denial-of-service (DDoS) attack that clocked in at more than 6.3 The Aisuru botnet comprises a globally-dispersed collection of hacked IoT devices, including routers, digital video recorders and other systems that are commandeered via default passwords or software vulnerabilities.

DDOS

DDOS IoT Internet Internet

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Krebs on Security

FEBRUARY 28, 2025

“If you need a server for a botnet, for malware, brute, scan, phishing, fakes and any other tasks, please contact us,” BEARHOST’s ad on one forum advises. A fake browser update page pushing mobile malware. government for its hacking operations, CEO Eugene Kaspersky says he ordered workers to delete the code.

Malware

Malware Antivirus Software DDOS

DDoS Mitigation Firm Founder Admits to DDoS

Krebs on Security

JANUARY 20, 2020

A Georgia man who co-founded a service designed to protect companies from crippling distributed denial-of-service (DDoS) attacks has pleaded to paying a DDoS-for-hire service to launch attacks against others. Tucker Preston , 22, of Macon, Ga., ” Preston declined to comment for this story.

DDOS

DDOS System Administration Internet Internet

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 15

Security Affairs

OCTOBER 13, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Over 300,000!

Malware

Malware DDOS Cryptocurrency Education

MikroTik botnet relies on DNS misconfiguration to spread malware

Security Affairs

JANUARY 16, 2025

Researchers discovered a 13,000-device MikroTik botnet exploiting DNS flaws to spoof 20,000 domains and deliver malware. Infoblox researchers discovered a botnet of 13,000 MikroTik devices that exploits DNS misconfigurations to bypass email protections, spoof approximately 20,000 domains, and deliver malware.

DNS

DNS Malware Firmware Authentication

Russia Creates Malware False-Flag App

Schneier on Security

JULY 20, 2022

The Russian hacking group Turla released an Android app that seems to aid Ukrainian hackers in their attacks against Russian networks. But the app they developed was actually malware. To add more credibility to the ruse they hosted the app on a domain “spoofing” the Azov Regiment: cyberazov[.]com. com. […].

Malware

Malware DDOS Hacking

This Service Helps Malware Authors Fix Flaws in their Code

Krebs on Security

MAY 18, 2020

Almost daily now there is news about flaws in commercial software that lead to computers getting hacked and seeded with malware. Here’s a look at one long-lived malware vulnerability testing service that is used and run by some of the Dark Web’s top cybercriminals. is cybercrime forum.

Malware

Malware Cybercrime Ransomware Marketing

Cloudflare blocked a record-breaking 5.6 Tbps DDoS attack

Security Affairs

JANUARY 22, 2025

terabit-per-second (Tbps) distributed denial-of-service (DDoS) attack. Terabit per second (Tbps) DDoS attack, which is the largest attack ever reported. The previous largest DDoS attack blocked by Cloudflare occurred in October 2024 and peaked at 3.8 Cloudflare announced that it has blocked a record-breaking 5.6

DDOS

DDOS Malware Internet Internet

Courts Hand Down Hard Jail Time for DDoS

Krebs on Security

JANUARY 14, 2019

On Friday, a 34-year-old Connecticut man received a whopping 10-year prison sentence for carrying out distributed denial-of-service (DDoS) attacks against a number of hospitals in 2014. Daniel Kaye. Photo: National Crime Agency. Daniel Kaye , an Israel-U.K. A report on the trial from the BBC says Kaye wept as he was taken away to jail.

DDOS

DDOS Internet Internet Spyware

New botnet HTTPBot targets gaming and tech industries with surgical attacks

Security Affairs

MAY 16, 2025

HTTPBot uses an attack ID for precise control and employs advanced DDoS tactics like HTTP Floods and obfuscation to bypass traditional detection methods. “HTTPBot has taken a different approach by developing a range of HTTP-based attack methods to conduct transactional (business) DDoS attacks. ” concludes the report.

DDOS

DDOS Education IoT Malware

Email Provider VFEmail Suffers ‘Catastrophic’ Hack

Krebs on Security

FEBRUARY 12, 2019

I wrote about the company in 2015 after it suffered a debilitating distributed denial-of-service (DDoS) attack after Romero declined to pay a ransom demand from an online extortion group. Another series of DDoS attacks in 2017 forced VFEmail to find a new hosting provider. based ISP Staminus come to mind).

Hacking

Hacking DDOS Backups Accountability

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 36

Security Affairs

MARCH 9, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware

Malware DDOS Hacking Ransomware

A cyber attack hit Japan Airlines delaying ticket sales for flights

Security Affairs

DECEMBER 26, 2024

Source Associated Press The airline determined that threat actors carried out distributed denial-of-service (DDoS) attack to overwhelm the target systems in an attempt to crash them. Japan Airlines confirmed that its systems were not infected with malware and no customer data was leaked. Kyodo News reported that Japan Post Co.

Cyber Attacks

Cyber Attacks DDOS Government Hacking

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Krebs on Security

SEPTEMBER 10, 2021

On Thursday evening, KrebsOnSecurity was the subject of a rather massive (and mercifully brief) distributed denial-of-service (DDoS) attack. But on Thursday DDoS protection firm Qrator Labs identified the culprit — “Meris” — a new IoT monster that first emerged at the end of June 2021. In its Aug. Image: Qrator.

IoT

IoT DDOS Internet Internet

Orcus RAT Author Charged in Malware Scheme

Krebs on Security

NOVEMBER 13, 2019

In July 2016, KrebsOnSecurity published a story identifying a Toronto man as the author of the Orcus RAT , a software product that’s been marketed on underground forums and used in countless malware attacks since its creation in 2015. This week, Canadian authorities criminally charged him with orchestrating an international malware scheme.

Malware

Malware Advertising Marketing System Administration

A botnet exploits e GeoVision zero-day to compromise EoL devices

Security Affairs

NOVEMBER 16, 2024

A botnet employed in DDoS or cryptomining attacks is exploiting a zero-day in end-of-life GeoVision devices to grow up. ” The botnet was used to carry out DDoS or cryptomining attacks. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, cryptomining )

DDOS

DDOS Internet Internet Hacking

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

Krebs on Security

FEBRUARY 4, 2025

The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled , English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. to , and vDOS , a DDoS-for-hire service that was shut down in 2016 after its founders were arrested.

eCommerce

eCommerce Cybercrime Accountability Hacking

The unlikely 3 million electric toothbrush DDoS attack

Bleeping Computer

FEBRUARY 7, 2024

A widely reported story that 3 million electric toothbrushes were hacked with malware to conduct distributed denial of service (DDoS) attacks is likely a hypothetical scenario instead of an actual attack. [.]

DDOS

DDOS Malware Hacking

Experts believe that Russian Gamaredon APT could fuel a new round of DDoS attacks

Security Affairs

MAY 28, 2022

360 Qihoo reported DDoS attacks launched by APT-C-53 (aka Gamaredon) conducted through the open-source DDoS Trojan program LOIC. The instances of the malware spotted by the experts were compiled in early March, a few days after the Russian invasion of Ukraine began. SecurityAffairs – hacking, Gamaredon. delicate.maizuko.**

DDOS

DDOS Malware Phishing Hacking

REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims

Security Affairs

MARCH 7, 2021

The REvil ransomware operators are using DDoS attacks and voice calls to journalists and victim’s business partners to force victims to pay the ransom. Malware #Ransomware #REvil REvil Ransomware launched a service for contact to news media, companies for the best pressure at no cost, and DDoS (L3, L7) as a paid service.

DDOS

DDOS Ransomware Media Malware

Gayfemboy Botnet targets Four-Faith router vulnerability

Security Affairs

JANUARY 8, 2025

Gayfemboy, a Mirai botnet variant, has been exploiting a flaw in Four-Faith industrial routers to launch DDoS attacks since November 2024. Operators behind the botnet also launched DDoS attacks against researchers tracking it. With no DDoS protection, the team stopped resolving the domains. Key targets include China, the U.S.,

DDOS

DDOS Hacking Government Cybercrime

No, 3 million electric toothbrushes were not used in a DDoS attack

Bleeping Computer

FEBRUARY 7, 2024

A widely reported story that 3 million electric toothbrushes were hacked with malware to conduct distributed denial of service (DDoS) attacks is likely a hypothetical scenario instead of an actual attack. [.]

DDOS

DDOS Malware Hacking

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. SecurityAffairs – hacking, Enemybot).

DDOS

DDOS Architecture Malware Cybercrime

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Security Affairs

MARCH 20, 2025

The archive contains a fake PDF report and DarkTortilla malware, which acts as a launcher for the Dark Crystal RAT ( DCRat ). The modular architecture of the malware allows to extend its functionalities for multiple malicious purposes, including surveillance, reconnaissance, information theft, DDoS attacks, and arbitrary code execution.

Computers and Electronics

Computers and Electronics Telecommunications Malware Surveillance

New evolving Abcbot DDoS botnet targets Linux systems

Security Affairs

NOVEMBER 13, 2021

Qihoo 360’s Netlab detailed a new evolving DDoS botnet called Abcbot with wormable capabilities that targets Linux systems. Researchers from Qihoo 360’s Netlab security team have spotted a new botnet, tracked as Abcbot, that targets Linux systems to launch distributed denial-of-service (DDoS) attacks. Pierluigi Paganini.

DDOS

DDOS Malware Passwords Cryptocurrency

UK Ad Campaign Seeks to Deter Cybercrime

Krebs on Security

MAY 28, 2020

The United Kingdom’s anti-cybercrime agency is running online ads aimed at young people who search the Web for services that enable computer crimes, specifically trojan horse programs and DDoS-for-hire services. “This is all about showing people there are other paths they can take.” FLATTENING THE CURVE.

Cybercrime

Cybercrime DDOS Advertising Hacking

HelloKitty ransomware gang also targets victims with DDoS attacks

Security Affairs

NOVEMBER 1, 2021

According to the alert, the ransomware gang is launching distributed denial-of-service (DDoS) attacks as part of its extortion activities. In some cases, if the victim does not respond quickly or does not pay the ransom, the threat actors will launch a Distributed Denial of Service (DDoS) attack on the victim company’s public facing website.”

DDOS

DDOS Ransomware Cybercrime Encryption

DDoS attacks in Q4 2020

SecureList

FEBRUARY 16, 2021

In December, Canada’s Laurentian University reported a DDoS attack. Educational institutions are recommended to use anti-DDoS solutions and strong firewall settings, and partner up with ISPs. In early October, a DDoS attack was reported by the PUBG Mobile team. But it dealt with the problem in a matter of minutes.

DDOS

DDOS Cryptocurrency Marketing Internet

DDoS attacks in Q3 2022

SecureList

NOVEMBER 7, 2022

In Q3 2022, DDoS attacks were, more often than not, it seemed, politically motivated. As before, most news was focused on the conflict between Russia and Ukraine, but other high-profile events also affected the DDoS landscape this quarter. The attackers stated on Telegram that they were “testing a new DDoS method.”

DDOS

DDOS Computers and Electronics Internet Internet

A powerful DDoS attack hit Hungarian banks and telecoms services

Security Affairs

SEPTEMBER 26, 2020

Hungarian financial institutions and telecommunications infrastructure were hit by a powerful DDoS attack originating from servers in Russia, China and Vietnam. A powerful DDoS attack hit some Hungarian banking and telecommunication services that briefly disrupted them. SecurityAffairs – hacking, Hungary). Pierluigi Paganini.

DDOS

DDOS Banking Telecommunications Advertising

Dutch police warn customers of a popular DDoS booter service

Security Affairs

OCTOBER 13, 2021

Dutch police warn customers of a distributed denial-of-service (DDoS) website of stopping using the service to avoid prosecution. Dutch police warn customers of a booter service, abused to carry out distributed denial-of-service (DDoS) attacks, of to stop using it to avoid prosecution. by carrying out DDoS attacks on March 19.

DDOS

DDOS Cybercrime IoT Hacking

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 13, 2024

The Mexican Drug Cartels Want You Casio: Notice of Partial Service Outage and Information Leak Caused by Ransomware Attack He founded a “startup” to access sanctioned Russian websites: the cyber police of Khmelnytskyi region exposed the hacker Hacked ‘AI Girlfriend’ Data Shows Prompts Describing Child Sexual Abuse Malware Over 300,000!

Data breaches

Data breaches Cryptocurrency Cybercrime Artificial Intelligence

Unraveling the truth behind the DDoS attack from electric toothbrushes

Security Affairs

FEBRUARY 8, 2024

Several media reported that three million electric toothbrushes were compromised and recruited into a DDoS botnet. The Swiss newspaper Aargauer Zeitung first published the news of a DDoS attack, carried out on January 30, that involved three million compromised electric toothbrushes. Is it true? What the f is wrong with you people????

DDOS

DDOS IoT Media Internet

Security Affairs newsletter Round 498 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 17, 2024

Agency Warns Employees About Phone Use Amid Ongoing China Hack APT Actors Embed Malware within macOS Flutter Applications The Botnet is Back: SSC STRIKE Team Uncovers a Renewed Cyber Threat Iranian “Dream Job” Campaign 11.24

Cryptocurrency

Cryptocurrency Malware Hacking Data breaches

Mirai botnet targets SSR devices, Juniper Networks warns

Security Affairs

DECEMBER 19, 2024

Threat actors initially compromised the devices, and then employed them in DDoS attacks. These systems have been infected with the Mirai malware and were subsequently used as a DDOS attack source to other devices accessible by their network.” ” read the report published by Juniper Networks.

DDOS

DDOS Firmware Firewall Passwords

German encrypted email service Tutanota suffers DDoS attacks

Security Affairs

SEPTEMBER 19, 2020

The popular encrypted email service Tutanota was hit with a series of DDoS attacks this week targeting its website fist and its DNS providers later. Encrypted email service, Tutanota suffered a series of DDoS attacks that initially targeted the website and later its DNS providers. SecurityAffairs – hacking, Tutanota).

DDOS

DDOS Encryption DNS Advertising

Developer of DDoS Mirai based botnets sentenced to prison

Security Affairs

JUNE 26, 2020

A man accused to have developed distributed denial of service (DDoS) botnets based on the Mirai botnet was sentenced to 13 months in federal prison. Schuchman compromised hundreds of thousands of IoT devices, including home routers and IP cameras, to create multiple DDoS IoT botnets that he rented to carry out the attacks.

DDOS

DDOS IoT Advertising Internet

Abusing Windows RDP servers to amplify DDoS attacks

Security Affairs

JANUARY 22, 2021

Threat actors are abusing Windows Remote Desktop Protocol (RDP) servers to amplify Distributed Denial of Service (DDoS) attacks. Attackers are abusing Windows Remote Desktop Protocol (RDP) servers to amplify Distributed Denial of Service (DDoS) attacks. SecurityAffairs – hacking, DDoS). ” concludes Netscout.

DDOS

DDOS VPN Authentication Hacking

DDoS amplify attack targets Citrix Application Delivery Controllers (ADC)

Security Affairs

DECEMBER 24, 2020

Citrix confirmed that a DDoS attack is targeting Citrix Application Delivery Controller (ADC) networking equipment. Anyone seen UDP reflect DDoS attacks on #citrix #netscaler lately?? It seems a worldwide UDP:443 (EDT) DDOS attack against #NetScaler #gateway is active since last night. SecurityAffairs – hacking, DDoS).

DDOS

DDOS System Administration VPN Authentication

How to Mitigate DDoS Attacks with Log Analytics

CyberSecurity Insiders

APRIL 30, 2021

Is your organization prepared to mitigate Distributed Denial of Service (DDoS) attacks against mission-critical cloud-based applications? A DDoS attack is a cyber attack that uses bots to flood the targeted server or application with junk traffic, exhausting its resources and disrupting service for real human users. Source: Testbytes.

DDOS

DDOS Cyber Attacks DNS Threat Detection

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Now new findings reveal that AVrecon is the malware engine behind a 12-year-old service called SocksEscort , which rents hacked residential and small business devices to cybercriminals looking to hide their true location online. ” According to Kilmer, AVrecon is the malware that gives SocksEscort its proxies.

Malware

Malware VPN Internet Internet

Matryosh DDoS botnet targets Android-Based devices via ADB

Security Affairs

FEBRUARY 4, 2021

Netlab researchers spotted a new Android malware, dubbed Matryosh , that is infecting devices to recruit them in a distributed denial-of-service (DDoS) botnet. The main purpose of the Android botnet is to carry out DDoS attacks. The ADB could be abused by malware to target Android phones through port 5555.

DDOS

DDOS DNS Antivirus Malware

Borat RAT, a new RAT that performs ransomware and DDoS attacks

Security Affairs

APRIL 3, 2022

Cyble researchers discovered a new remote access trojan (RAT) named Borat capable of conducting DDoS and ransomware attacks. Unlike other RATs, the Borat RAT provides Ransomware and DDOS services to attackers expanding their capabilities. DDOS – This module is used to perform a DDOS attack. ” concludes Cyble.

DDOS

DDOS Ransomware Spyware Encryption

Akamai blocked the largest DDoS attack ever on its European customers

Security Affairs

JULY 28, 2022

This month Akamai blocked the largest distributed denial-of-service (DDoS) attack that hit an organization in Europe. On July 21, 2022, Akamai mitigated the largest DDoS attack that ever hit one of its European customers. SecurityAffairs – hacking, DDoS). Gbps and 659.6 Mpps over 14 hours.” Gbps and 659.6

DDOS

DDOS Internet Internet Hacking

KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Trending Sources

DDoS Mitigation Firm Founder Admits to DDoS

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 15

MikroTik botnet relies on DNS misconfiguration to spread malware

Russia Creates Malware False-Flag App

This Service Helps Malware Authors Fix Flaws in their Code

Cloudflare blocked a record-breaking 5.6 Tbps DDoS attack

Courts Hand Down Hard Jail Time for DDoS

New botnet HTTPBot targets gaming and tech industries with surgical attacks

Email Provider VFEmail Suffers ‘Catastrophic’ Hack

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 36

A cyber attack hit Japan Airlines delaying ticket sales for flights

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Orcus RAT Author Charged in Malware Scheme

A botnet exploits e GeoVision zero-day to compromise EoL devices

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

The unlikely 3 million electric toothbrush DDoS attack

Experts believe that Russian Gamaredon APT could fuel a new round of DDoS attacks

REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims

Gayfemboy Botnet targets Four-Faith router vulnerability

No, 3 million electric toothbrushes were not used in a DDoS attack

Enemybot, a new DDoS botnet appears in the threat landscape

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

New evolving Abcbot DDoS botnet targets Linux systems

UK Ad Campaign Seeks to Deter Cybercrime

HelloKitty ransomware gang also targets victims with DDoS attacks

DDoS attacks in Q4 2020

DDoS attacks in Q3 2022

A powerful DDoS attack hit Hungarian banks and telecoms services

Dutch police warn customers of a popular DDoS booter service

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Unraveling the truth behind the DDoS attack from electric toothbrushes

Security Affairs newsletter Round 498 by Pierluigi Paganini – INTERNATIONAL EDITION

Mirai botnet targets SSR devices, Juniper Networks warns

German encrypted email service Tutanota suffers DDoS attacks

Developer of DDoS Mirai based botnets sentenced to prison

Abusing Windows RDP servers to amplify DDoS attacks

DDoS amplify attack targets Citrix Application Delivery Controllers (ADC)

How to Mitigate DDoS Attacks with Log Analytics

Who and What is Behind the Malware Proxy Service SocksEscort?

Matryosh DDoS botnet targets Android-Based devices via ADB

Borat RAT, a new RAT that performs ransomware and DDoS attacks

Akamai blocked the largest DDoS attack ever on its European customers

Stay Connected