Russian Script Kiddie Assembles Massive DDoS Botnet

November 27, 2024 at 09:08AM A hacker known as “Matrix” has created a DDoS botnet using publicly available malware tools, targeting IoT devices and enterprise servers. Operating on Telegram, Matrix offers various DDoS attack plans. Researchers emphasize the need for improved security practices to address vulnerabilities being exploited, particularly default credentials and unpatched systems. ### … Read more

Russia-Linked Hackers Attack Japan’s Govt, Ports

October 21, 2024 at 08:06PM Two Russian hacking groups, NoName057(16) and the Russian Cyber Army Team, have launched DDoS attacks on Japanese logistics, shipbuilding firms, and government entities. The attacks follow Japan’s increased defense budget and military collaboration with allies, highlighting tensions in geopolitical rivalries amid Japan’s largest military buildup since World War II. ### … Read more

Anonymous Sudan Unmasked as Leaders Face Life in Prison

October 17, 2024 at 01:55PM A federal grand jury indicted two Sudanese nationals for operating Anonymous Sudan, responsible for over 35,000 DDoS attacks globally. Ahmed Omer, 22, and Alaa Omer, 27, face conspiracy charges, with potential sentences ranging from five years to life. Their group, linked to pro-Russian activities, was shut down during Operation PowerOFF. … Read more

Anonymous Sudan isn’t any more: two alleged operators named, charged

October 17, 2024 at 03:33AM The US Attorney’s Office indicted Sudanese nationals Ahmed Salah Yousif Omer and Alaa Salah Yusuuf Omer, alleged operators of the hacktivist group Anonymous Sudan. They face charges related to numerous DDoS attacks on US critical infrastructure. Authorities claim to have degraded the group’s capabilities and seized its attack tools. ### … Read more

GorillaBot Goes Ape With 300K Cyberattacks Worldwide

October 7, 2024 at 05:29PM A new Mirai variant named GorillaBot unleashed 300,000 DDoS attacks last month, impacting 20,000 organizations globally. The attacks primarily used UDP flood and TCP ACK Bypass methods, targeting 113 countries. GorillaBot, based on Mirai code, introduces 19 DDoS attack methods, posing a growing challenge for affected organizations to mitigate. This … Read more

New Gorilla Botnet Launches Over 300,000 DDoS Attacks Across 100 Countries

October 7, 2024 at 06:45AM The Gorilla (aka GorillaBot) botnet, a new variant of Mirai, has been identified by cybersecurity researchers. It has carried out over 300,000 attack commands with a high attack density, targeting over 100 countries and using various DDoS attack methods. It also exploits a security flaw in Apache Hadoop YARN RPC … Read more

Cloudflare blocks largest recorded DDoS attack peaking at 3.8Tbps

October 3, 2024 at 12:15PM A recent DDoS campaign targeted financial, internet, and telecommunications sectors, resulting in a record 3.8 Tbps volumetric attack. The assault comprised 100 hyper-volumetric attacks, overwhelming network infrastructure and primarily leveraging compromised devices in various countries. Cloudflare autonomously mitigated the attacks, with UDP-based transfers and CUPS vulnerabilities posing ongoing threats. Key … Read more

Unix Printing Vulnerabilities Enable Easy DDoS Attacks

October 2, 2024 at 05:19PM A recent disclosure of four critical vulnerabilities in the Common Unix Printing System (CUPS) has shed light on the potential for attackers to conduct distributed denial-of-service (DDoS) attacks. The vulnerabilities could enable adversaries to exploit approximately 58,000 Internet-exposed devices, creating significant strain on target systems and potentially affecting server hardware. … Read more

After Code Execution, Researchers Show How CUPS Can Be Abused for DDoS Attacks

October 2, 2024 at 08:39AM Akamai warns of over 58,000 internet-exposed CUPS hosts vulnerable to abuse for significant DDoS attacks, highlighting the potential risks posed by this issue. Research demonstrates the potential for CUPS to be exploited for malicious purposes after code execution, as reported by SecurityWeek. Based on the meeting notes, it appears that … Read more

UAE, Saudi Arabia Become Plum Cyberattack Targets

October 1, 2024 at 01:09AM Cyberattackers and hacktivists are increasingly targeting the Gulf Cooperative Council (GCC) region, with a 70% rise in DDoS attacks in the first half of the year. The UAE faces an average of 50,000 cyberattacks daily, while Saudi Arabia was targeted by a China-linked group. The increase in attacks may involve … Read more