Recently patched CUPS flaw can be used to amplify DDoS attacks

October 3, 2024 at 06:36PM A vulnerability in the Common Unix Printing System allows threat actors to initiate DDoS attacks with a 600x amplification factor. This exploit, triggered by a single UDP packet, can quickly recruit vulnerable servers for attacks and cause an “infinite loop” of requests, especially on outdated CUPS versions. Akamai and Cloudflare … Read more

Record-Breaking DDoS Attack Peaked at 3.8 Tbps, 2.14 Billion Pps

October 2, 2024 at 08:39AM Cloudflare successfully fought off a record-breaking DDoS attack, reaching 3.8 Tbps and 2.14 billion Pps. Source: SecurityWeek. From the meeting notes, it appears that Cloudflare successfully mitigated a record-breaking DDoS attack, which peaked at 3.8 Tbps and 2.14 billion Pps. This information was reported in an article on SecurityWeek’s website. … Read more

Mysterious “LOVE” packet storms flood the internet since 2020

September 19, 2024 at 10:02AM Internet intelligence firm GreyNoise has been tracking large waves of “Noise Storms” since January 2020, suspected to be covert communications, DDoS attack signals, or malware channels. These storms involve spoofed internet traffic and display peculiar characteristics, such as the presence of “LOVE” ASCII string in ICMP packets. GreyNoise seeks cybersecurity … Read more

US Disrupts ‘Raptor Train’ Botnet of Chinese APT Flax Typhoon

September 19, 2024 at 06:15AM The US government disrupted a Chinese state-sponsored botnet named Raptor Train, created by Flax Typhoon. The botnet compromised over 260,000 devices, powering DDoS attacks and routing malware. Law enforcement operations successfully neutralized the botnet, despite attempted interference by the hackers. Five Eyes agencies issued a joint advisory and efforts continue … Read more

New Gafgyt Botnet Variant Targets Weak SSH Passwords for GPU Crypto Mining

August 15, 2024 at 01:57AM Cybersecurity researchers have identified a new variant of the Gafgyt botnet that targets devices with weak SSH passwords, employing their GPU computational power to mine cryptocurrency. This variant specifically aims at cloud native environments, expanding its scale by exploiting poorly secured servers and propagating the malware. The botnet employs the … Read more

Gcore Radar Report Shows 46% Increase in Number of DDoS Attacks in First Half of 2024

August 14, 2024 at 03:01PM Gcore, a global AI, cloud, network, and security solutions provider, released its Q1-Q2 2024 Gcore Radar report on DDoS attacks. The report shows a 46% increase in attacks compared to 2023, with peak power measures in terabits per second. Gaming and technology sectors were heavily targeted. Gcore emphasizes the need … Read more

Elon Musk Says Cyberattack Crashed Site Ahead of Trump Livestream Interview

August 13, 2024 at 06:42AM Elon Musk’s interview with Donald Trump on the X social media platform was disrupted by technical issues and a suspected cyberattack. Musk tweeted about a DDOS attack, but did not provide further details. Speculation arose whether it was caused by an overwhelming audience or a nation-state attack. Trump’s campaign also … Read more

Understanding escalating cyber threats

August 9, 2024 at 11:16AM Cloudflare’s 2024 Global Security Brief webinar on August 20th will cover DDoS attack evolution, API and network security threats, AI-enhanced phishing, and Zero Trust security principles. The session aims to equip IT and security professionals with essential knowledge and practical strategies to combat the ever-evolving cyber threats. Register to watch. … Read more

New CMoon USB worm targets Russians in data theft attacks

August 7, 2024 at 05:30PM The ‘CMoon’ self-spreading worm, discovered by Kaspersky researchers, targets high-value entities in Russia via a compromised gas supply company website. It employs malicious document links to distribute itself and exhibits various functionalities such as info-stealing, DDoS attacks, and self-propagation. Kaspersky advises vigilance due to its potential for further distribution. Based … Read more

Hackers Exploit Misconfigured Jupyter Notebooks with Repurposed Minecraft DDoS Tool

August 3, 2024 at 01:06AM Cybersecurity researchers disclosed a new DDoS attack campaign, Panamorfi, targeting misconfigured Jupyter Notebooks. The attack uses a Java-based tool, mineping, to launch a TCP flood DDoS attack on servers. Exploiting internet-exposed Jupyter Notebook instances, the attack aims to consume server resources and is attributed to the threat actor yawixooo. Previous … Read more