December 12, 2024 at 02:27AM A global law enforcement operation named PowerOFF has dismantled 27 stresser services used for DDoS attacks, arresting three administrators and identifying over 300 users. Coordinated by Europol and 15 countries, the initiative addresses the rising threat of cybercrime and highlights vulnerabilities in web application security. ### Meeting Takeaways – December … Read more
October 7, 2024 at 06:45AM The Gorilla (aka GorillaBot) botnet, a new variant of Mirai, has been identified by cybersecurity researchers. It has carried out over 300,000 attack commands with a high attack density, targeting over 100 countries and using various DDoS attack methods. It also exploits a security flaw in Apache Hadoop YARN RPC … Read more
May 19, 2024 at 01:50PM The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added three vulnerabilities to its ‘Known Exploited Vulnerabilities’ catalog, one impacting Google Chrome and two affecting D-Link routers. Federal agencies have until June 6th to address these issues, including a 10-year-old vulnerability in D-Link routers. CISA has not provided further details … Read more
May 2, 2024 at 08:45AM Ukrainian national Yaroslav Vasinskyi, also known as Rabotnik, has been sentenced to over 13 years in prison and ordered to pay $16 million in restitution for his involvement in over 2,500 ransomware attacks, part of the REvil group. The attacks saw demands exceeding $700 million in cryptocurrency. Vasinskyi was extradited … Read more
April 17, 2024 at 09:09AM Six botnet malware operations target TP-Link Archer AX21 routers vulnerable to CVE-2023-1389, a high-severity command injection flaw. Discovered in January 2023, it was fixed by TP-Link in March 2023. Mirai variants, “Condi,” and botnets like Moobot and Miori exploit the vulnerability for DDoS attacks. Users are urged to update firmware … Read more