DDOS, Information Security and Malware - Cyber Security Informer

MikroTik botnet relies on DNS misconfiguration to spread malware

Security Affairs

JANUARY 16, 2025

Researchers discovered a 13,000-device MikroTik botnet exploiting DNS flaws to spoof 20,000 domains and deliver malware. Infoblox researchers discovered a botnet of 13,000 MikroTik devices that exploits DNS misconfigurations to bypass email protections, spoof approximately 20,000 domains, and deliver malware.

DNS

DNS Malware Firmware Authentication

Cloudflare blocked a record-breaking 5.6 Tbps DDoS attack

Security Affairs

JANUARY 22, 2025

terabit-per-second (Tbps) distributed denial-of-service (DDoS) attack. Terabit per second (Tbps) DDoS attack, which is the largest attack ever reported. The previous largest DDoS attack blocked by Cloudflare occurred in October 2024 and peaked at 3.8 Cloudflare announced that it has blocked a record-breaking 5.6

DDOS

DDOS Malware Internet Internet

Difference between Cybersecurity and Information Security

CyberSecurity Insiders

JANUARY 18, 2023

Many of you get confused with terms cybersecurity and Information Security and think that both these words are same and synonymous. As organizations face constant threats in cyberspace like DDoS, ransomware, malware and data breaches, cybersecurity helps track and mitigate threats to eliminate business risks.

Information Security

Information Security Cybersecurity DDOS Data breaches

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 36

Security Affairs

MARCH 9, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware

Malware DDOS Hacking Ransomware

A cyber attack hit Japan Airlines delaying ticket sales for flights

Security Affairs

DECEMBER 26, 2024

Source Associated Press The airline determined that threat actors carried out distributed denial-of-service (DDoS) attack to overwhelm the target systems in an attempt to crash them. Japan Airlines confirmed that its systems were not infected with malware and no customer data was leaked.

Cyber Attacks

Cyber Attacks DDOS Government Hacking

New botnet HTTPBot targets gaming and tech industries with surgical attacks

Security Affairs

MAY 16, 2025

HTTPBot uses an attack ID for precise control and employs advanced DDoS tactics like HTTP Floods and obfuscation to bypass traditional detection methods. “HTTPBot has taken a different approach by developing a range of HTTP-based attack methods to conduct transactional (business) DDoS attacks.

DDOS

DDOS Education Malware IoT

New XORDDoS, Kaiji DDoS botnet variants target Docker servers

Security Affairs

JUNE 24, 2020

Operators behind XORDDoS and Kaiji DDoS botnets recently started targeting Docker servers exposed online, Trend Micro warns. Trend Micro researchers reported that operators behind XORDDoS and Kaiji DDoS botnets recently started targeting Docker servers exposed online. ” reads the analysis published by Trend Micro.

DDOS

DDOS Malware Advertising IoT

New Lucifer DDoS botnet targets Windows systems with multiple exploits

Security Affairs

JUNE 26, 2020

Upon infecting a system the bot turns it into a cryptomining client and could use it to launch distributed denial-of-service (DDoS) attacks. The malware author named the bot Satan DDoS, but Palo Alto Network’s Unit42 researchers dubbed it Lucifer because there’s another malware with the same name, the Satan Ransomware.

DDOS

DDOS Malware Advertising Passwords

Experts believe that Russian Gamaredon APT could fuel a new round of DDoS attacks

Security Affairs

MAY 28, 2022

360 Qihoo reported DDoS attacks launched by APT-C-53 (aka Gamaredon) conducted through the open-source DDoS Trojan program LOIC. The instances of the malware spotted by the experts were compiled in early March, a few days after the Russian invasion of Ukraine began. ” reads the analysis published by 360 Qihoo. defective88.maizuko.**

DDOS

DDOS Malware Phishing Hacking

REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims

Security Affairs

MARCH 7, 2021

The REvil ransomware operators are using DDoS attacks and voice calls to journalists and victim’s business partners to force victims to pay the ransom. Malware #Ransomware #REvil REvil Ransomware launched a service for contact to news media, companies for the best pressure at no cost, and DDoS (L3, L7) as a paid service.

DDOS

DDOS Ransomware Media Malware

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. Upon installing the threat, the bot drops a file in /tmp/.pwned

DDOS

DDOS Architecture Malware Cybercrime

New evolving Abcbot DDoS botnet targets Linux systems

Security Affairs

NOVEMBER 13, 2021

Qihoo 360’s Netlab detailed a new evolving DDoS botnet called Abcbot with wormable capabilities that targets Linux systems. Researchers from Qihoo 360’s Netlab security team have spotted a new botnet, tracked as Abcbot, that targets Linux systems to launch distributed denial-of-service (DDoS) attacks.

DDOS

DDOS Malware Passwords Cryptocurrency

Akamai mitigated the largest ever PPS DDoS attack

Security Affairs

JUNE 25, 2020

Akamai announced to have mitigated a record distributed denial-of-service (DDoS) attack that hit a European bank. Akamai revealed that a bank in Europe was hit by a massive distributed denial-of-service (DDoS) attack that peaked a record 809 million packets per second (PPS). SecurityAffairs – hacking, DDoS). Pierluigi Paganini.

DDOS

DDOS Banking Advertising Hacking

Dutch police warn customers of a popular DDoS booter service

Security Affairs

OCTOBER 13, 2021

Dutch police warn customers of a distributed denial-of-service (DDoS) website of stopping using the service to avoid prosecution. Dutch police warn customers of a booter service, abused to carry out distributed denial-of-service (DDoS) attacks, of to stop using it to avoid prosecution. by carrying out DDoS attacks on March 19.

DDOS

DDOS Cybercrime IoT Hacking

Hoaxcalls Botnet expands the target list and adds new DDoS capabilities

Security Affairs

APRIL 24, 2020

The Hoaxcalls IoT botnet expanded the list of targeted devices and has added new distributed denial of service (DDoS) capabilities. The botnet was initially designed to launch DDoS attacks using UDP, DNS and HEX floods. Experts also noticed that the new variant implements 16 new DDoS capabilities. ” continues the report.

DDOS

DDOS IoT Advertising DNS

HelloKitty ransomware gang also targets victims with DDoS attacks

Security Affairs

NOVEMBER 1, 2021

According to the alert, the ransomware gang is launching distributed denial-of-service (DDoS) attacks as part of its extortion activities. In some cases, if the victim does not respond quickly or does not pay the ransom, the threat actors will launch a Distributed Denial of Service (DDoS) attack on the victim company’s public facing website.”

DDOS

DDOS Ransomware Cybercrime Encryption

German encrypted email service Tutanota suffers DDoS attacks

Security Affairs

SEPTEMBER 19, 2020

The popular encrypted email service Tutanota was hit with a series of DDoS attacks this week targeting its website fist and its DNS providers later. Encrypted email service, Tutanota suffered a series of DDoS attacks that initially targeted the website and later its DNS providers. ” reads a blog post published by Tutanota.

DDOS

DDOS Encryption DNS Advertising

AWS mitigated largest DDoS attack ever of 2.3 Tbps

Security Affairs

JUNE 17, 2020

Tbps DDoS attack, the largest ever, which surpassed the previous record of 1.7 Amazon announced it has mitigated the largest ever DDoS attack of 2.3 ” The report didn’t name the target of the DDoS attack, AWS experts only revealed that the magnitude was obtained with CLDAP reflection attack. Pierluigi Paganini.

DDOS

DDOS Advertising Internet Internet

DDoS amplify attack targets Citrix Application Delivery Controllers (ADC)

Security Affairs

DECEMBER 24, 2020

Citrix confirmed that a DDoS attack is targeting Citrix Application Delivery Controller (ADC) networking equipment. The threat actors are using the Datagram Transport Layer Security (DTLS) protocol as an amplification vector in attacks against Citrix appliances with EDT enabled. SecurityAffairs – hacking, DDoS).

DDOS

DDOS System Administration VPN Authentication

Microsoft Fights Off Another Record DDoS Attack as Incidents Soar

eSecurity Planet

JANUARY 28, 2022

Microsoft in November fended off a massive distributed denial-of-service (DDoS) attack in its Azure cloud that officials said was the largest ever recorded, the latest in a wave of record attacks that washed over the IT industry in the second half of 2021. Also read: How to Stop DDoS Attacks: 6 Tips for Fighting DDoS Attacks.

DDOS

DDOS IoT Engineering Internet

A powerful DDoS attack hit Hungarian banks and telecoms services

Security Affairs

SEPTEMBER 26, 2020

Hungarian financial institutions and telecommunications infrastructure were hit by a powerful DDoS attack originating from servers in Russia, China and Vietnam. A powerful DDoS attack hit some Hungarian banking and telecommunication services that briefly disrupted them. ” reported the Reuters agency. Pierluigi Paganini.

DDOS

DDOS Banking Telecommunications Advertising

Unraveling the truth behind the DDoS attack from electric toothbrushes

Security Affairs

FEBRUARY 8, 2024

Several media reported that three million electric toothbrushes were compromised and recruited into a DDoS botnet. The Swiss newspaper Aargauer Zeitung first published the news of a DDoS attack, carried out on January 30, that involved three million compromised electric toothbrushes. Is it true? What the f is wrong with you people????

DDOS

DDOS IoT Media Internet

Developer of DDoS Mirai based botnets sentenced to prison

Security Affairs

JUNE 26, 2020

A man accused to have developed distributed denial of service (DDoS) botnets based on the Mirai botnet was sentenced to 13 months in federal prison. Schuchman compromised hundreds of thousands of IoT devices, including home routers and IP cameras, to create multiple DDoS IoT botnets that he rented to carry out the attacks.

DDOS

DDOS IoT Advertising Internet

Google mitigated a 2.54 Tbps DDoS attack in 2017, the largest DDoS ever seen

Security Affairs

OCTOBER 16, 2020

The Google Cloud team revealed that in September 2017 it has mitigated DDoS attack that reached 2.54 Tbps, the largest DDoS attack of ever. The Google Cloud team revealed that back in September 2017 it has mitigated a powerful DDoS attack that clocked at 2.54 Tbps DDoS attack mitigated by Amazon’s AWS in February.

DDOS

DDOS Advertising DNS Engineering

Abusing Windows RDP servers to amplify DDoS attacks

Security Affairs

JANUARY 22, 2021

Threat actors are abusing Windows Remote Desktop Protocol (RDP) servers to amplify Distributed Denial of Service (DDoS) attacks. Attackers are abusing Windows Remote Desktop Protocol (RDP) servers to amplify Distributed Denial of Service (DDoS) attacks. SecurityAffairs – hacking, DDoS). ” concludes Netscout.

DDOS

DDOS VPN Authentication Hacking

Matryosh DDoS botnet targets Android-Based devices via ADB

Security Affairs

FEBRUARY 4, 2021

Netlab researchers spotted a new Android malware, dubbed Matryosh , that is infecting devices to recruit them in a distributed denial-of-service (DDoS) botnet. The main purpose of the Android botnet is to carry out DDoS attacks. The ADB could be abused by malware to target Android phones through port 5555.

DDOS

DDOS DNS Antivirus Malware

Borat RAT, a new RAT that performs ransomware and DDoS attacks

Security Affairs

APRIL 3, 2022

Cyble researchers discovered a new remote access trojan (RAT) named Borat capable of conducting DDoS and ransomware attacks. Unlike other RATs, the Borat RAT provides Ransomware and DDOS services to attackers expanding their capabilities. DDOS – This module is used to perform a DDOS attack. ” concludes Cyble.

DDOS

DDOS Ransomware Spyware Encryption

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Security Affairs

MARCH 20, 2025

The archive contains a fake PDF report and DarkTortilla malware, which acts as a launcher for the Dark Crystal RAT ( DCRat ). The modular architecture of the malware allows to extend its functionalities for multiple malicious purposes, including surveillance, reconnaissance, information theft, DDoS attacks, and arbitrary code execution.

Computers and Electronics

Computers and Electronics Telecommunications Malware Surveillance

Mirai botnet targets SSR devices, Juniper Networks warns

Security Affairs

DECEMBER 19, 2024

Threat actors initially compromised the devices, and then employed them in DDoS attacks. These systems have been infected with the Mirai malware and were subsequently used as a DDOS attack source to other devices accessible by their network.” ” read the report published by Juniper Networks.

DDOS

DDOS Firmware Firewall Passwords

Cloudflare blocked a 2.5 Tbps DDoS attack aimed at the Minecraft server

Security Affairs

OCTOBER 13, 2022

Cloudflare mitigated a record distributed denial-of-service (DDoS) attack against Wynncraft, one of the largest Minecraft servers. Cloudflare announced it has mitigated a record distributed denial-of-service (DDoS) attack against Wynncraft, one of the largest Minecraft servers. The largest attack was a 2.5 ” continues the report.

DDOS

DDOS Threat Reports Hacking Cybercrime

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Now new findings reveal that AVrecon is the malware engine behind a 12-year-old service called SocksEscort , which rents hacked residential and small business devices to cybercriminals looking to hide their true location online. ” According to Kilmer, AVrecon is the malware that gives SocksEscort its proxies.

Malware

Malware VPN Internet Internet

Experts warn of surge in DDoS attacks targeting education institutions

Security Affairs

SEPTEMBER 15, 2020

Experts warn of a surge in the DDoS attacks against education institutions and the academic industry across the world. The DDoS attacks are causing severe issues to the targeted education institutions such as temporarily takedown of the network and online classes. ” reads the analysis published by CheckPoint. Pierluigi Paganini.

Education

Education DDOS Advertising Cyber Attacks

New RapperBot Campaign targets game servers with DDoS attacks

Security Affairs

NOVEMBER 16, 2022

Fortinet researchers discovered new samples of RapperBot used to build a botnet to launch Distributed DDoS attacks against game servers. Fortinet FortiGuard Labs researchers have discovered new samples of the RapperBot malware that are being used to build a DDoS botnet to target game servers. ” continues the report.

DDOS

DDOS IoT Malware Architecture

Cloudflare mitigated the largest ever volumetric DDoS attack to date

Security Affairs

AUGUST 20, 2021

Web infrastructure and website security company Cloudflare announced to have mitigated the largest ever volumetric DDoS attack to date. Cloudflare, the web infrastructure and website security company, announced that it has mitigated the largest ever volumetric distributed denial of service (DDoS) attack to date.

DDOS

DDOS Telecommunications Internet Internet

Fake DDoS protection pages on compromised WordPress sites lead to malware infections

Security Affairs

AUGUST 21, 2022

Threat actors compromise WordPress sites to display fake Cloudflare DDoS protection pages to distribute malware. DDoS Protection pages are associated with browser checks performed by WAF/CDN services which verify if the site visitor is a human or a bot. The file poses as a tool required to bypass the DDoS verification.

DDOS

DDOS Malware Antivirus Firewall

Akamai blocked the largest DDoS attack ever on its European customers

Security Affairs

JULY 28, 2022

This month Akamai blocked the largest distributed denial-of-service (DDoS) attack that hit an organization in Europe. On July 21, 2022, Akamai mitigated the largest DDoS attack that ever hit one of its European customers. SecurityAffairs – hacking, DDoS). Gbps and 659.6 Mpps over 14 hours.” Gbps and 659.6 Gbps and 659.6

DDOS

DDOS Internet Internet Hacking

New DDoS IRC Bot distributed through Korean webHard platforms

Security Affairs

JANUARY 19, 2022

Researchers spotted an IRC bot written in GoLang that is being used to carry out DDoS attacks targeting users in Korea. Researchers from AhnLab’s Security Emergency-response Center (ASEC) spotted an IRC bot written in GoLang that is being used to carry out DDoS attacks targeting users in Korea. Pierluigi Paganini.

DDOS

DDOS Malware Hacking Information Security

Akamai dealt with an 800Gbps ransom DDoS against a gambling company

Security Affairs

APRIL 1, 2021

Akamai has recently involved in the mitigation of two of the largest known ransom DDoS attacks, one of them peaked at 800Gbps. CDN and cybersecurity firm Akamai warns of a worrying escalation in ransom DDoS attacks since the beginning of the year. ” Likely DDoS extortion attacks. SecurityAffairs – hacking, ransom DDoS).

DDOS

DDOS Security Intelligence Hacking Cybersecurity

Aquabot variant v3 targets Mitel SIP phones

Security Affairs

JANUARY 29, 2025

A new variant of the Mirai-based botnet Aquabot targets vulnerable Mitel SIP phones to recruit them into a DDoS botnet. Aquabot is a Mirai-based botnet designed for DDoS attacks. They often claim it is for DDoS mitigation testing, but experts pointed out that it spreads Mirai malware and is used for real attacks.

DDOS

DDOS Firmware Malware Firewall

Cloudflare mitigated 2 Tbps DDoS attack, the largest attack it has seen to date

Security Affairs

NOVEMBER 15, 2021

Cloudflare announced to have mitigated a distributed denial-of-service (DDoS) attack that peaked at almost 2 terabytes per second (Tbps). is an American web infrastructure and website security company that provides content delivery network and DDoS mitigation services. SecurityAffairs – hacking, DDoS). Cloudflare, Inc.

DDOS

DDOS DNS IoT Internet

New Zealand stock exchange (NZX) halted 2 days by DDoS attack

Security Affairs

AUGUST 27, 2020

New Zealand’s stock exchange (NZX) confirmed it was hit by a massive distributed denial of service (DDoS) attack from abroad that knocked it offline two days. The DDoS attack impacted traders, anyway financial or personal information of the users was not accessed. Pierluigi Paganini.

DDOS

DDOS Marketing Advertising Internet

T-Mobile suffered a major outage in the US allegedly caused by a massive DDoS attack

Security Affairs

JUNE 16, 2020

Wireless carrier T-Mobile suffered a major outage in the United States, that impacted service at other carriers, due to a “massive” DDoS attack. Wireless carrier T-Mobile suffered a massive DDoS attack that caused a major outage in the United States that impacted service at other carriers due to a “massive” DDoS attack.

DDOS

DDOS Mobile Wireless Advertising

A new botnet named M?ris is behind massive DDoS attack that hit Yandex

Security Affairs

SEPTEMBER 9, 2021

The massive DDoS attack that has been targeting the internet giant Yandex was powered b a completely new botnet tracked as M?ris. The record magnitude of the massive DDoS attack was also confirmed by the US company Cloudflare, which specializes in the protection against such kinds of attacks. technique for DDoS attacks.

DDOS

DDOS Internet Internet Hacking

SHARED INTEL: From airbags to malware: vehicle cyber safety arises in the age of connected cars

The Last Watchdog

MAY 15, 2023

Funso Richard , Information Security Officer at Ensemble , highlighted the gravity of these threats. These include ransomware targeting backend servers, distributed denial of service (DDoS) attacks, destructive malware, and even weaponizing charging stations to deploy malware.

Malware

Malware Manufacturing IoT Software

MikroTik botnet relies on DNS misconfiguration to spread malware

Cloudflare blocked a record-breaking 5.6 Tbps DDoS attack

Trending Sources

Difference between Cybersecurity and Information Security

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 36

A cyber attack hit Japan Airlines delaying ticket sales for flights

New botnet HTTPBot targets gaming and tech industries with surgical attacks

New XORDDoS, Kaiji DDoS botnet variants target Docker servers

New Lucifer DDoS botnet targets Windows systems with multiple exploits

Experts believe that Russian Gamaredon APT could fuel a new round of DDoS attacks

REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims

Enemybot, a new DDoS botnet appears in the threat landscape

New evolving Abcbot DDoS botnet targets Linux systems

Akamai mitigated the largest ever PPS DDoS attack

Dutch police warn customers of a popular DDoS booter service

Hoaxcalls Botnet expands the target list and adds new DDoS capabilities

HelloKitty ransomware gang also targets victims with DDoS attacks

German encrypted email service Tutanota suffers DDoS attacks

AWS mitigated largest DDoS attack ever of 2.3 Tbps

DDoS amplify attack targets Citrix Application Delivery Controllers (ADC)

Microsoft Fights Off Another Record DDoS Attack as Incidents Soar

A powerful DDoS attack hit Hungarian banks and telecoms services

Unraveling the truth behind the DDoS attack from electric toothbrushes

Developer of DDoS Mirai based botnets sentenced to prison

Google mitigated a 2.54 Tbps DDoS attack in 2017, the largest DDoS ever seen

Abusing Windows RDP servers to amplify DDoS attacks

Matryosh DDoS botnet targets Android-Based devices via ADB

Borat RAT, a new RAT that performs ransomware and DDoS attacks

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Mirai botnet targets SSR devices, Juniper Networks warns

Cloudflare blocked a 2.5 Tbps DDoS attack aimed at the Minecraft server

Who and What is Behind the Malware Proxy Service SocksEscort?

Experts warn of surge in DDoS attacks targeting education institutions

New RapperBot Campaign targets game servers with DDoS attacks

Cloudflare mitigated the largest ever volumetric DDoS attack to date

Fake DDoS protection pages on compromised WordPress sites lead to malware infections

Akamai blocked the largest DDoS attack ever on its European customers

New DDoS IRC Bot distributed through Korean webHard platforms

Akamai dealt with an 800Gbps ransom DDoS against a gambling company

Aquabot variant v3 targets Mitel SIP phones

Cloudflare mitigated 2 Tbps DDoS attack, the largest attack it has seen to date

New Zealand stock exchange (NZX) halted 2 days by DDoS attack

T-Mobile suffered a major outage in the US allegedly caused by a massive DDoS attack

A new botnet named M?ris is behind massive DDoS attack that hit Yandex

SHARED INTEL: From airbags to malware: vehicle cyber safety arises in the age of connected cars

Stay Connected