October 3, 2024 at 06:36PM A vulnerability in the Common Unix Printing System allows threat actors to initiate DDoS attacks with a 600x amplification factor. This exploit, triggered by a single UDP packet, can quickly recruit vulnerable servers for attacks and cause an “infinite loop” of requests, especially on outdated CUPS versions. Akamai and Cloudflare … Read more
September 18, 2024 at 01:09PM Lumen Technologies researchers have identified a large-scale botnet, Raptor Train, controlled by a Chinese state-sponsored espionage group known as Flax Typhoon. The botnet targets US and Taiwanese organizations in critical sectors using IoT devices and has a robust command and control infrastructure. The botnet has been used for extensive scanning … Read more
July 5, 2024 at 07:52AM OVHcloud announced its mitigation of the largest ever packet rate DDoS attack, reaching 840 Mpps, revealing a surge in such attacks with over 100 Mpps. The attacks aim to disrupt infrastructure leading to an increase in bandwidth and resources. The company attributes the attacks to the misuse of MikroTik routers … Read more
December 4, 2023 at 06:54AM Cybersecurity experts have uncovered a new version of the P2PInfect botnet targeting routers and IoT devices, now able to infect devices using MIPS architecture. First identified in 2023 exploiting a critical Redis vulnerability, P2PInfect has evolved with evasion tactics and now includes a Windows DLL module, indicating a sophisticated threat … Read more