Dark Reading

RondoDox Botnet: an 'Exploit Shotgun' for Edge Vulns

A new botnet is exploiting dozens of known vulnerabilities in hard-to-patch edge devices. "RondoDox" is characteristically unlike most botnets, researchers from Trend Micro said in a report on ...
TechRadar

This dangerous new botnet is shooting off attacks across the world faster than can be tracked - here's what we know about RondoDox

RondoDox botnet exploits 56 vulnerabilities across 30+ internet-connected device types Its “exploit shotgun” approach is noisy, attracting defenders but compromising diverse hardware Patching devices, ...
Krebs on Security

DDoS Botnet Aisuru Blankets US ISPs in Record DDoS

The world’s largest and most disruptive botnet is now drawing a majority of its firepower from compromised Internet-of-Things (IoT) devices hosted on U.S. Internet providers like AT&T, Comcast and ...
Bleeping Computer

Chinese hackers abuse geo-mapping tool for year-long persistence

Chinese state hackers remained undetected in a target environment for more than a year by turning a component in the ArcGIS geo-mapping tool into a web shell. The ArcGIS geographic information system ...
Infosecurity-magazine.com

Hacker Group TA585 Emerges With Advanced Attack Infrastructure

A newly identified cybercriminal group, TA585, has been uncovered by cybersecurity researchers for running one of the most autonomous and technically advanced operations in today’s threat landscape.
Krebs on Security

Category Archives: Web Fraud 2.0

Aisuru, the botnet responsible for a series of record-smashing distributed denial-of-service (DDoS) attacks this year, recently was overhauled to support a more low-key, lucrative and sustainable ...
Ars Technica

Thousands of customers imperiled after nation-state ransacks F5’s network

Thousands of networks—many of them operated by the US government and Fortune 500 companies—face an “imminent threat” of being breached by a nation-state hacking group following the breach of a major ...
Couriermail

China bombarding Australia with cyber attacks, targeting work from home employees, report reveals

The Australian Signals Directorate (ASD) on Tuesday released its Annual Cyber Threat Report revealing it confronted 1200 cyber security incidents over the past year – an 11 per cent jump on the ...
Ars Technica

Hackers can steal 2FA codes and private messages from Android phones

Android devices are vulnerable to a new attack that can covertly steal two-factor authentication codes, location timelines, and other private data in less than 30 seconds. The new attack, named ...
Bleeping Computer

Latest Brute Force news

Broadcom has released security updates to patch two high-severity VMware NSX vulnerabilities reported by the U.S. National Security Agency (NSA). A checklist for securing Microsoft 365. Set it and ...
Infosecurity-magazine.com

Infosecurity Magazine

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.