SecurityWeek

New ‘SSHStalker’ Linux Botnet Uses Old Techniques

The SSHStalker Linux botnet has ensnared 7,000 systems, deploying various scanners and malware, an IRC bot, and multiple kernel exploits.
Network World

SSHStalker botnet brute-forces its way onto 7,000 Linux machines

A newly discovered botnet is compromising poorly-protected Linux servers by brute-forcing weak SSH password login authentication. Researchers at Canada-based Flare Systems, who discovered the botnet, ...
Dark Reading

400K Linux Servers Recruited by Resurrected Ebury Botnet

A Linux-based botnet is alive and well, powering cryptocurrency theft and financial scams years after the imprisonment of one the key perpetrators behind it. The Ebury botnet — which was first ...
TechRepublic

Botnet Attack Targeted Routers: A Wake-Up Call for Securing Remote Employees’ Hardware

Botnet Attack Targeted Routers: A Wake-Up Call for Securing Remote Employees’ Hardware Your email has been sent The FBI spotted this state-sponsored attack that highlights how home office setups can ...
SiliconANGLE

Botnets leverage decade-old D-Link vulnerabilities in new attack campaigns

A new report out today from Fortinet Inc.’s FortiGuard Labs details the activities of two different botnets observed through October and November that are being spread through vulnerabilities in ...

Hackers resurrect the 90s IRC tricks with SSHStalker

Hackers resurrect 90s IRC tricks with SSHStalker, using old exploits to quietly compromise thousands of Linux servers ...
Dark Reading

Various Botnets Pummel Year-Old TP-Link Flaw in IoT Attacks

A number of botnets are pummeling a nearly year-old command-injection vulnerability in TP-Link routers to compromise the devices for IoT-driven distributed denial of service (DDoS) attacks. There ...
HHS

PumaBot Malware Targets Linux IoT Devices

A botnet targeting Internet of Things devices running on the Linux operating system works by brute forcing credentials and downloading cryptomining software. See Also: Cracking the Code: Securing ...
The Next Web

Dutch cybercops tracked a crypto theft to one of the world’s worst botnets

After years of hacking servers to swindle millions of dollars, the notorious Ebury malware gang had slipped into the shadows by 2021. Suddenly, they reemerged with a bang. The new evidence surfaced ...
TechRepublic

Androxgh0st Malware Botnet Steals AWS, Microsoft Credentials and More

The Androxgh0st malware botnet is used for victim identification and exploitation in targeted networks, as well as credentials collection. Read the FBI/CISA's tips for protecting against this malware ...
Bleeping Computer

MySQL servers targeted by 'Ddostf' DDoS-as-a-Service botnet

MySQL servers are being targeted by the 'Ddostf' malware botnet to enslave them for a DDoS-as-a-Service platform whose firepower is rented to other cybercriminals. This campaign was discovered by ...
ZDNet

F-Secure sees smaller botnets on the rise

Cybercriminals are downsizing their botnets to try and trick software security companies. Computers infected with a virus unknowingly become "zombies" in a botnet — which is a network used to send out ...