#botnets

Ars Technica News

@arstechni.ca

3 days ago

14,000 routers are infected by malware that's highly resistant to takedowns https://arstechni.ca #distributedhashtables #Security #botnets #malware #routers #Biz&IT #Tech #ASUS

@marryjw.bsky.social

4 days ago

Botnets Breakdown: From Zombies to Command Centers

Botnets Breakdown: From Zombies to Command Centers. Discover how infected devices become part of massive botnets, how C2 servers control them, and ways to defend against these cyber threats.

#Botnets #Cybersecurity #Malware #Infosec #SecurityPodcast

open.spotify.com/episode/2cXy...

Negative PID

@negativepid.bsky.social

1 week ago

Botnet for profit: Jeanson James Ancheta - Negative PID Early hackers were fuelled by curiosity and defiance of authority. Jeanson James Ancheta changed that forever.

Botnet for profit: Jeanson James Ancheta

negativepid.blog/bot...

#botnets #cybercrime #hackers #jeansonJamesAncheta #Cybersecurity #cyberattacks #cyberThreats #onlineSecurity #negativepid

etguenni (Günter Born) borncity.com

@etguenni.bsky.social

1 month ago

Rustdesk durch Botnet-Angriffe immer wieder offline (Feb. 2026) Kurze Information für Blog-Leser die die Remote Desktop-Lösung Rustdesk einsetzen. Ein Blog-Leser hat mich darüber informiert (danke), dass deren Server „momentan“ offline seien. Aussage war: „das…

#Rustdesk durch Angriffe eines #Botnets zeitweise offline

borncity.com/blog/2026/02...htt

CyberMaterial

@cybermaterial.bsky.social

1 month ago

The Reign of Botnets: Defending Against Abuses, Bots and Fraud on the Internet by David Senecal
Find More Books: buff.ly/geoA3ra

#CyberSecurityBooks #Botnets #OnlineFraud #InternetSecurity #BotDetection #CyberDefense #ThreatIntelligence #CyberBookClub

TechNadu

@technadu.com

1 month ago

The Kimwolf botnet shows how unsecured IoT devices & residential proxy software can quietly introduce risk, sometimes even inside large organizations.

Not always a breach. Often an exposure path.
How do you think teams should handle devices they don’t fully control?
#CyberSecurity #Botnets #Infosec

CySecurity News

@cysecuritynews.bsky.social

1 month ago

Researchers Disrupt Major Botnet Network After It Infects Millions of Android Devices   Security researchers have dismantled a substantial portion of the infrastructure powering the Kimwolf and Aisuru botnets, cutting off communication to more than 550 command-and-control servers used to manage infected devices. The action was carried out by Black Lotus Labs, the threat intelligence division of Lumen Technologies, and began in early October 2025. Kimwolf and Aisuru operate as large-scale botnets, networks of compromised devices that can be remotely controlled by attackers. These botnets have been used to launch distributed denial-of-service attacks and to route internet traffic through infected devices, effectively turning them into unauthorized residential proxy nodes. Kimwolf primarily targets Android systems, with a heavy concentration on unsanctioned Android TV boxes and streaming devices. Prior technical analysis showed that the malware is delivered through a component known as ByteConnect, which may be installed directly or bundled into applications that come preloaded on certain devices. Once active, the malware establishes persistent access to the device. Researchers estimate that more than two million Android devices have been compromised. A key factor enabling this spread is the exposure of Android Debug Bridge services to the internet. When left unsecured, this interface allows attackers to install malware remotely without user interaction, enabling rapid and large-scale infection. Follow-up investigations revealed that operators associated with Kimwolf attempted to monetize the botnet by selling access to the infected devices’ internet connections. Proxy bandwidth linked to compromised systems was offered for sale, allowing buyers to route traffic through residential IP addresses in exchange for payment. Black Lotus Labs traced parts of the Aisuru backend to residential SSH connections originating from Canadian IP addresses. These connections were used to access additional servers through proxy infrastructure, masking malicious activity behind ordinary household networks. One domain tied to this activity briefly appeared among Cloudflare’s most accessed domains before being removed due to abuse concerns. In early October, researchers identified another Kimwolf command domain hosted on infrastructure linked to a U.S.-based hosting provider. Shortly after, independent reporting connected multiple proxy services to a now-defunct Discord server used to advertise residential proxy access. Individuals associated with the hosting operation were reportedly active on the server for an extended period. During the same period, researchers observed a sharp increase in Kimwolf infections. Within days, hundreds of thousands of new devices were added to the botnet, with many of them immediately listed for sale through a single residential proxy service. Further analysis showed that Kimwolf infrastructure actively scanned proxy services for vulnerable internal devices. By exploiting configuration flaws in these networks, the malware was able to move laterally, infect additional systems, and convert them into proxy nodes that were then resold. Separate research uncovered a related proxy network built from hundreds of compromised home routers operating across Russian internet service providers. Identical configurations and access patterns indicated automated exploitation at scale. Because these devices appear as legitimate residential endpoints, malicious traffic routed through them is difficult to distinguish from normal consumer activity. Researchers warn that the abuse of everyday consumer devices continues to provide attackers with resilient, low-visibility infrastructure that complicates detection and response efforts across the internet.

Researchers Disrupt Major Botnet Network After It Infects Millions of Android Devices #Aisuru #Android #Botnets

TechNadu

@technadu.com

2 months ago

Researchers report ongoing growth of the Kimwolf Android botnet, largely tied to insecure Android TV devices and residential networks.
A reminder that everyday hardware can become part of large-scale abuse when security is an afterthought.

#AndroidSecurity #Botnets #IoT #CyberRisk #ThreatResearch

TechNadu

@technadu.com

2 months ago

The Kimwolf botnet highlights a growing issue: consumer IoT devices and residential proxies being abused to reach internal networks many assume are safe.

Researchers say millions of devices are affected, often due to weak defaults and lack of authentication.

#CyberSecurity #Botnets #ThreatResearch

@marryjw.bsky.social

2 months ago

Learn how hackers turn everyday devices into “zombies” controlled by remote command centers. Discover how they operate the threat and strategies organizations can use to defend against them.

#Botnets #NetworkSecurity #SecurityAwareness

music.amazon.com/podcasts/fa3...

Danie

@gadgeteer.co.za

2 months ago

GreyNoise launches a free scanner to check if you’re part of a botnet “GreyNoise Labs has launched a free tool called GreyNoise IP Check that lets users check if their IP address has been observed in malicious scanning

GreyNoise launches a free scanner to check if you’re part of a botnet

See gadgeteer.co.za/greynoise-la...

#botnets #privacy #technology

@marryjw.bsky.social

2 months ago

Explore botnets: how hackers turn everyday devices into “zombies,” control them from remote command centers, and the steps organizations can take to detect and stop these attacks.

#Botnets #CyberThreats #NetworkSecurity #TechPodcast

podcasts.apple.com/us/podcast/b...

Ryan Daws

@gadgetry.bsky.social

3 months ago

Hyper-volumetric IoT botnets rewrite enterprise resilience rules Hyper-volumetric IoT botnets have become a primary operational risk and new rules are required to maintain enterprise resilience.

The weaponisation of compromised connected devices has reached unprecedented levels, rendering traditional manual intervention and on-premise mitigation hardware obsolete. #iot #botnets #cloudflare #infosec #cybersecurity #tech #news #technology

Sir Toootenstein

@sir-toootenstein.det.social.ap.brid.gy

3 months ago

A light green info box. It says: Your IP is clean. Your IP has not been observed scanning the internet or contained in the Common Business Services dataset.

This tool might be quite handy. It is a web-based checker of you IP is part of botnet activity.

Mine is clean. 🙂

#botnets #itsec

https://check.labs.greynoise.io/

Dawisco

@dawisco.bsky.social

3 months ago

GreyNoise created a tool to detect if your IP address is part of a recognized botnet

- Clean
- Malicious/Suspicious (some of your devices may be compromised)
- Business Service (you may be using a service such as a VPN)

#security #malware #botnets #internet #ddos

check.labs.greynoise.io

Winbuzzer

@winbuzzer.com

3 months ago

New X Feature Accidentally Exposes Foreign Influence MAGA Operations - WinBuzzer X is inadvertently exposing a vast network of foreign-operated accounts posing as US voters with its new "About This Account" transparency feature.

winbuzzer.com/2025/11/25/x...

New X Feature Accidentally Exposes Foreign Influence MAGA Operations

#SocialMedia #ElonMusk #X #Disinformation #Privacy #Security #Politics #ForeignInfluence #TrustAndSafety #ContentModeration #Botnets #Cybersecurity #ClickFarms

Christian Stöcker

@christianstoecker.de

3 months ago

Loria Murhi @loriamurhi.bsky.social • 8 Std. In 2026, #Germany will open more than 500 clubs teaching how to operate unmanned aerial vehicles. #News In 2026, Germany will open more than 500 clubs teaching how to operate unmanned aerial vehicles

Aleshia Papci @aleshia-papci.bsk... • 9 Std. In February 2026, the #Bundeswehr will launch a large-scale campaign to promote the image of women in the army. #News In February 2026, the Bundeswehr will launch a large-scale campaign to promote the image of women in the army.

Amanda Battio @amandabattio.bsky.social 1 Follower 10 Folge ich 1 Post Posts Antworten Medien Videos Amanda Battio @amandabattio.b... • 9 Std. The male population in #Germany is in a state of mental and physical decline, forcing the #Bundeswehr to focus on women. #News The male population in Germany is in a state of mental and physical decline, forcing the Bundeswehr ip fa.oss on women

Arla Manah @arla-manah.bsky.social 5 Follower 10 Folge ich 1 Post Posts Antworten Medien Videos Arla Manah @arla-manah.bsky.so... • 8 Std. The Institute for the Study of War received an official warning from the #German government about its intention to take legal action over publications about the militarization of #Germany. #News ISW TSW STUDY OF WAR THE INSTITUTE FORT TUDY OF WAR RECEIVED AN OFFICIL WARNING FROM THE GERMAN GOVERNMENT ABOUTITS INTENTION TO TAKE LEGAL ACTION OVER PUBLICATIONS ABOUTTHE MILITARIZATION OF GERMANY.

Russia‘s #propaganda #botnets are going all in with their German Bundeswehr anxiety today. They REALLY don‘t want more of that. All of these are fake of course. The last one (next post) is particularly funny. #matryoshka

Max Resing

@resingm.infosec.exchange.ap.brid.gy

3 months ago

An awesome guest post: Botnets Never Die on the creativity of #malware developers to be found at #APNIC. It covers details to the #AisuruBotnet, The #AIRASHIBotnet, and how their #C2 communication #protocol works.

Apparnetly, the heartbeat is a client sending `cat` to the C2 server, and the […]

Bongolian

@bongolian.mstdn.social.ap.brid.gy

3 months ago

After a multi-day outage caused by #AI #botnets, #RationalWiki is back online, and is apparently stable, though Javascript is now required for browsing.
https://rationalwiki.org/wiki/Main_Page

AI propagandists want people to believe that generative AI is a golden hammer, but outward appearances […]

Sean O'Brien

@profdiggity.com

4 months ago

A bunch of great people are offering help and vendors + hosts are (mostly) responsive to abuse reports for these #botnets. I'm still being targeted in the most personal way #Aisuru operators can. Most of that I'll talk about soon. Thanks esp. to @briankrebs.infosec.exchange.ap.brid.gy

@ccahua.bsky.social

4 months ago

Aisuru Botnet Shifts from DDoS to Residential Proxies Aisuru, the botnet responsible for a series of record-smashing distributed denial-of-service (DDoS) attacks this year, recently was overhauled to support a more low-key, lucrative and sustainable busi...

#AI is hungry and the cancer is spreading. First the Electric Grid and now the Internet Commons krebsonsecurity.com/2025/10/aisu...
#ContentScraping #Botnets #ResidentialProxies #Enshittification #TechBroCircleJerk

Pure Tech

@puretech.news

5 months ago

Botnets are getting smarter and more dangerous In 2024 alone, botnets accounted for 29% of all observed malware, reclaiming their spot at the top of the cyberthreat landscape, according to ForeScout Technologies Inc.’s latest analysis of 900 million...

Botnets are getting smarter and more dangerous #Technology #Cybersecurity #Botnets #Cyberthreats #Malware

B.C. Begley

@bcbegley.bsky.social

5 months ago

The FBI Destroyed an Internet Weapon, but Criminals Picked Up the Pieces YouTube video by B.C. Begley

The FBI Destroyed an Internet Weapon, but Criminals Picked Up the Pieces
#CyberSecurity #Botnets #FBIAlert
www.youtube.com/watch?v=sf8E...

Helga

@helgana.bsky.social

5 months ago

#ddos #cybersecurity #hacking #ddosattack #botnet #hacker #linux #hackers #coding #botnets #python #security #cyberattack #vpn #javascript #ddosattacks #java #programming #computerscience #hacks #cybercrime #ddospanel #tech #botnetsetup #malware #pythonprogramming #firewall

Antonio Pardo Sánchez

@apardo.spluca.org

6 months ago

DSLRoot, Proxies, and the Threat of ‘Legal Botnets’ The cybersecurity community on Reddit responded in disbelief this month when a self-described Air National Guard member with top secret security clearance began questioning the arrangement they'd made...

#DSLRoot, #Proxies, and the Threat of Legal #Botnets krebsonsecurity.com/2025/08/dslr...

2rZiKKbOU3nTafniR2qMMSE0gwZ

@2rzikkbou3ntafnir2qmmse0gwz.activitypub.awakari.com.ap.brid.gy

6 months ago

Oregon Man Charged in Global “Rapper Bot” DDoS-For-Hire Scheme A massive cybercrime operation tied to one of the internet's most powerful DDoS-for-hire botnets, Rapper Bot, has been brought...

#Firewall #Daily #Cyber #News #Dark #Web #News #Botnet […]

[Original post on thecyberexpress.com]

2rZiKKbOU3nTafniR2qMMSE0gwZ

@2rzikkbou3ntafnir2qmmse0gwz.activitypub.awakari.com.ap.brid.gy

6 months ago

Officials gain control of Rapper Bot DDoS botnet, charge lead developer and administrator The DDoS botnet was among the most powerful on record, allegedly exceeding six terabits per second during i...

#Cybercrime #Cybersecurity #Threats #Akamai #Amazon #Web […]

[Original post on cyberscoop.com]

David @ InnoVirtuoso

@innovirtuoso.bsky.social

7 months ago

Ficora and Kaiten Botnets Exploiting D-Link Vulnerabilities Discover the critical threats posed by botnets, particularly the Ficora and Kaiten, which exploit vulnerabilities in older D-Link routers.

🚨 New blog post alert! Discover how the Ficora and Kaiten botnets are exploiting D-Link vulnerabilities. Stay informed and secure! 🔒🌐 Read more: innovirtuoso.com/cybersecurity/understand... #Cybersecurity #DLink #Botnets