Dark Reading

PumaBot Targets Linux Devices in Latest Botnet Campaign

A novel Go-based Linux botnet, dubbed "PumaBot," has been observed targeting Internet of Things (IoT) devices. PumaBot differentiates itself from typical botnets by remotely retrieving a list of ...
InfoWorld

Don’t blame Linux for the XOR botnet

Among the headlines in the tech press last week was news of a massive Linux botnet that was apparently crippling various sites on the Internet with 150Gbps of traffic. After reading a number of ...
HHS

PumaBot Malware Targets Linux IoT Devices

A botnet targeting Internet of Things devices running on the Linux operating system works by brute forcing credentials and downloading cryptomining software. See Also: Airlines and Airports: ...
Network World

SSHStalker botnet brute-forces its way onto 7,000 Linux machines

A newly discovered botnet is compromising poorly-protected Linux servers by brute-forcing weak SSH password login authentication. Researchers at Canada-based Flare Systems, who discovered the botnet, ...

The Gentlemen ransomware now uses SystemBC for bot-powered attacks

A SystemBC proxy malware botnet of more than 1,570 hosts, believed to be corporate victims, has been discovered following an ...
CSOonline

Novel PumaBot slips into IoT surveillance with stealthy SSH break-ins

Security researchers are warning about a novel Linux botnet, dubbed PumaBot, targeting Internet of Things (IOT) surveillance devices. According to a DarkTrace observation, the botnet bypasses the ...
Hosted on MSN

Hackers resurrect the 90s IRC tricks with SSHStalker

SSHStalker uses IRC channels and multiple bots to control infected Linux hosts Automated SSH brute-forcing rapidly spreads the botnet through cloud server infrastructures Compilers are downloaded ...
Infosecurity Magazine

Attackers Exploit DVR Command Injection Flaw to Deploy Mirai-Based Botnet

FortiGuard Labs has identified a Mirai-based Nexcorium campaign actively exploiting CVE-2024-3721 in TBK DVR devices ...
The Hacker News

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

CVE-2024-3721 and CVE-2023-33538 exploited in TBK DVRs and EoL TP-Link routers, enabling Mirai variants and DDoS risk.
SiliconANGLE

Botnets leverage decade-old D-Link vulnerabilities in new attack campaigns

A new report out today from Fortinet Inc.’s FortiGuard Labs details the activities of two different botnets observed through October and November that are being spread through vulnerabilities in ...
Krebs on Security

Feds Disrupt IoT Botnets Behind Huge DDoS Attacks

The Justice Department said the Department of Defense Office of Inspector General’s (DoDIG) Defense Criminal Investigative Service (DCIS) executed seizure warrants targeting multiple U.S.-registered ...
Bleeping Computer

Malware botnets exploit outdated D-Link routers in recent attacks

Two botnets tracked as ‘Ficora’ and ‘Capsaicin’ have recorded increased activity in targeting D-Link routers that have reached end of life or are running outdated firmware versions. The list of ...