Tag: botnet
-
Enhanced capabilities sustain the rapid growth of Vo1d botnet
Operators behind the Vo1d botnet have enhanced its capabilities, enabling rapid growth in recent months. In September 2024, Doctor Web researchers uncovered a malware, tracked asVo1d, that infected nearly 1.3 million Android-based TV boxes belonging to users in 197 countries. The malicious code acts as a backdoor allowing attackers to download and install third-party software…
-
Malware auf Android-TV-Boxen: Vo1d-Botnetz wächst auf 1,6 Millionen Geräte
300.000 neue Zombies hat die Vo1d-Malware auf Android-Boxen rekrutiert aber nur bestimmte Geräte sind betroffen. First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/it-sicherheit/malware/malware-auf-android-tv-boxen-vo1d-botnetz-waechst-auf-16-millionen-geraete-310902.html
-
Vo1d Botnet Evolves as It Ensnares 1.6 Million Android TV Boxes
The Vo1d botnet is now powered by 1.6 million Android TV devices, up from 1.3 million half a year ago. The post Vo1d Botnet Evolves as It Ensnares 1.6 Million Android TV Boxes appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/vo1d-botnet-evolves-as-it-ensnares-1-6-million-android-tv-boxes/
-
Riesiges Botnetz steuert 1,6 Millionen TV-Geräte
Auch Deutschland steuert Zehntausende von Geräten bei. Forscher sehen in dem Botnetz ein enormes Potenzial für verheerende Cyberangriffe. First seen on golem.de Jump to article: www.golem.de/news/android-riesiges-botnetz-steuert-1-6-millionen-tv-geraete-2502-193816.html
-
Vo1d malware botnet grows to 1.6 million Android TVs worldwide
A new variant of the Vo1d malware botnet has grown to 1,590,299 infected Android TV devices across 226 countries, recruiting devices as part of anonymous proxy server networks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/vo1d-malware-botnet-grows-to-16-million-android-tvs-worldwide/
-
Microsoft 365 Accounts Get Sprayed by Mega-Botnet
The threat actors are exploiting non-interactive sign-ins, an authentication feature that security teams don’t typically monitor. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/microsoft-365-accounts-sprayed-mega-botnet
-
Massive Botnet Facilitates Microsoft 365 Password Spray Attacks
First seen on scworld.com Jump to article: www.scworld.com/brief/massive-botnet-facilitates-microsoft-365-password-spray-attacks
-
Botnet of 130,000 compromised devices targets Microsoft 365 accounts
First seen on scworld.com Jump to article: www.scworld.com/news/botnet-of-130000-compromised-devices-targets-microsoft-365-accounts
-
DeepSeek Lure Using CAPTCHAs To Spread Malware
Tags: ai, attack, botnet, breach, captcha, cloud, control, credentials, crypto, cybercrime, data, detection, exploit, infrastructure, injection, international, login, malicious, malware, network, open-source, powershell, privacy, scam, service, technology, theft, threat, tool, windowsIntroductionThe rapid rise of generative AI tools has created opportunities and challenges for cybercriminals. In an instant, industries are being reshaped while new attack surfaces are being exposed. DeepSeek AI chatbot that launched on January 20, 2025, quickly gained international attention, making it a prime target for abuse. Leveraging a tactic known as brand impersonation,…
-
Chinese Botnet Powered by 130,000 Devices Targets Microsoft 365 Accounts
A China-linked botnet powered by 130,000 hacked devices has targeted Microsoft 365 accounts with password spraying attacks. The post Chinese Botnet Powered by 130,000 Devices Targets Microsoft 365 Accounts appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/chinese-botnet-powered-by-130000-devices-targets-microsoft-365-accounts/
-
Chinese Botnet Bypasses MFA in Microsoft 365 Attacks
SecurityScorecard revealed that the large-scale password spraying campaign can bypass MFA and security access policies by utilizing Non-interactive sign-ins First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/chinese-botnet-mfa-microsoft/
-
A large botnet targets M365 accounts with password spraying attacks
A botnet of 130,000+ devices is attacking Microsoft 365 accounts via password-spraying, bypassing MFA by exploiting basic authentication. SecurityScorecard researchers discovered a botnet of over 130,000 devices that is conducting password-spray attacks against Microsoft 365 (M365) accounts worldwide. The attackers targeted accounts protected with basic authentication bypassing multi-factor authentication. The experts pointed out that organizations…
-
Botnet looks for quiet ways to try stolen logins in Microsoft 365 environments
Researchers say a large botnet-driven campaign poses a threat to Microsoft 365 environments that still use an authentication process that the tech giant has been phasing out in recent years. First seen on therecord.media Jump to article: therecord.media/botnet-credentials-microsoft-spraying-attack
-
Botnet of 130K Devices Targets Microsoft 365 in Password-Spraying Attack
A botnet of 130,000 devices is launching a Password-Spraying attack on Microsoft 365, bypassing MFA and exploiting legacy authentication to access accounts. First seen on hackread.com Jump to article: hackread.com/botnet-devices-microsoft-365-password-spraying-attack/
-
Botnet targets Basic Auth in Microsoft 365 password spray attacks
A massive botnet of over 130,000 compromised devices is conducting password-spray attacks against Microsoft 365 (M365) accounts worldwide, attempting to confirm credentials. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/botnet-targets-basic-auth-in-microsoft-365-password-spray-attacks/
-
Massive botnet hits Microsoft 365 accounts
A recently discovered botnet of over 130,000 compromised devices is launching coordinated password-spraying attacks against Microsoft 365 (M365) accounts. Security researchers … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/02/24/botnet-hits-microsoft-365-accounts/
-
Networks hosting botnet CCs: Same players, same problems
With every Botnet Threat Update we publish, the same networks consistently appear in the Top 20 for hosting botnet command and control (C&C) servers. But why does this keep happening? In this Botnet Spotlight, we look into the root causes behind this persistent issue and what networks must do to break the cycle. First seen…
-
Suspected botnet targets edge devices using brute force attacks
Researchers warn of a surge in attempted logins targeting devices from SonicWall, Palo Alto Networks and others. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/botnet-edge-devices-brute-force/739565/
-
IoT-Geräte gefährdet – Neue MiraiVariante entdeckt
First seen on security-insider.de Jump to article: www.security-insider.de/warnung-vor-neuer-mirai-botnet-variante-murdoc-a-cb60ae5659145c3942ad1ea5ff21bde9/
-
Pink Botnet Information Protection Tips
New threats surface almost every day, each with its own unique characteristics and degrees of severity. One such threat that first appeared 2021 has caught the attention of security experts worldwide is the “Pink Botnet.” Unlike everyday malware that primarily… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/pink-botnet/
-
Support ausgelaufen: Keine Sicherheitsupdates mehr für attackierte Zyxel-Router
Derzeit hat es eine Mirai-Botnet-Malware auf bestimmte Routermodelle von Zyxel abgesehen. Weil der Support ausgelaufen ist, müssen Admins jetzt handeln. First seen on heise.de Jump to article: www.heise.de/news/Support-ausgelaufen-Keine-Sicherheitsupdates-mehr-fuer-attackierte-Zyxel-Router-10269938.html
-
Aquabot variant v3 targets Mitel SIP phones
A new variant of the Mirai-based botnet Aquabot targets vulnerable Mitel SIP phones to recruit them into a DDoS botnet. Akamai researchers spotted a new variant of the Mirai-based botnet Aquabot that is targeting vulnerable Mitel SIP phones. Aquabot is a Mirai-based botnet designed for DDoS attacks. Named after the “Aqua” filename, it was first…
-
Mirai Variant ‘Aquabot’ Exploits Mitel Device Flaws
Yet another spinoff of the infamous DDoS botnet is exploiting a known vulnerability in active attacks, while its threat actors are promoting it on Telegram for other attackers to use as well, in a DDoS-as-a-service model. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/mirai-variant-aquabot-exploits-mitel-phone-flaws
-
Why is my Mitel phone DDoSing strangers? Oh, it was roped into a new Mirai botnet
And now you won’t stop calling me, I’m kinda busy First seen on theregister.com Jump to article: www.theregister.com/2025/01/29/ddos_attacks_aquabot_mitel/
-
Aquabot Botnet Targeting Vulnerable Mitel Phones
The Mirai-based Aquabot botnet has been targeting a vulnerability in Mitel SIP phones for which a proof-of-concept (PoC) exploit exists. The post Aquabot Botnet Targeting Vulnerable Mitel Phones appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/aquabot-botnet-targeting-vulnerable-mitel-phones/
-
New Aquabot Malware Actively Exploiting Mitel SIP phones injection vulnerability
Akamai’s Security Intelligence and Response Team (SIRT) has uncovered a novel variant of the Mirai-based botnet malware, dubbed Aquabotv3, actively targeting Mitel SIP phones via a critical vulnerability. This marks the third observed iteration of Aquabot, which now showcases unique capabilities not previously seen in Mirai derivatives. The malware exploits CVE-2024-41710, a command injection vulnerability…
-
Privacy Roundup: Week 4 of Year 2025
Tags: access, ai, apt, attack, backup, botnet, breach, cctv, cve, cybersecurity, data, data-breach, detection, email, exploit, firmware, flaw, google, group, identity, infrastructure, korea, lazarus, leak, login, malicious, malware, north-korea, phishing, phone, privacy, regulation, remote-code-execution, risk, router, scam, service, software, startup, technology, threat, tool, update, virus, vulnerability, windowsThis is a news item roundup of privacy or privacy-related news items for 19 JAN 2025 – 25 JAN 2025. Information and summaries provided here are as-is for warranty purposes. Note: You may see some traditional “security” content mixed-in here due to the close relationship between online privacy and cybersecurity – many things may overlap;…
-
Widespread AIRASHI botnet detailed in new report
Tags: botnetFirst seen on scworld.com Jump to article: www.scworld.com/brief/widespread-airashi-botnet-detailed-in-new-report
-
Mehrere Staaten desinfizieren Botnetz, Deutschland nicht
Während Behörden in Frankreich und den USA die Schadsoftware Plug-X auf betroffenen Computern abschalten, wird in Deutschland über Infektionen nur informiert. First seen on heise.de Jump to article: www.heise.de/news/Botnetz-Plug-X-Reinemachen-geht-nicht-10252309.html
-
Botnetz Plug-X: Reinemachen geht nicht?
Während Behörden in Frankreich und den USA die Schadsoftware Plug-X auf betroffenen Computern abschalten, wird in Deutschland über Infektionen nur informiert. First seen on heise.de Jump to article: www.heise.de/news/Botnetz-Plug-X-Reinemachen-geht-nicht-10252309.html