Botnet News, Articles and Updates

Three plead guilty to creating Mirai IoT botnet malware

Three men have pleaded guilty in federal court to charges related to the creation of the Mirai Internet of Things botnet malware, variants of which have been used in a series of debilitating distributed denial of service (DDoS) attacks.

Ramnit botnet spotted in Google Play but poses limited threat

In much the same way a forgotten land mine can cause injury years after it was planted and forgotten, researchers are noticing the Ramnit worm popping up on mobile devices two years after its main users were taken down.

Office 365 joke: KnockKnock, Who's there? Botnet malware

Microsoft's already battered Office 365 is once again being targeted, this time by KnockKnock, a botnet attack designed to specifically victimize the office productivity software suite.

Android malware on Google Play grows botnets, launches DDoS attacks

The Sockbot malware has made its way into at least eight Apps in the Google Play Store with the intent of adding devices to botnets and performing DDoS attacks.

Necurs attackers likely gathering intel via downloader screen grabs

Symantec researchers said a new error-reporting capability and screen grab functionality indicates that Necurs attackers are trying to obtain operational intelligence.

Cryptocurrency miners increasingly use CPU mining tools

Cryptocurrency miners have increased their use of mining tools that utilize central processing unit (CPU), and to a lesser extent graphic processing units (GPU) specifically those targeting enterprise networks.

'Thingbots' become a 'thing' expected to underpin a future darknet

Botnets built exclusively from IoT devices have very much become a 'thing - thingbots - and they are now becoming a primary infrastructure for a future darknet according to a report from cybersecurity firm F5 Networks.

Taking down Avalanche, a case study in international cooperation

International cooperation across all levels of government and law enforcement with those agencies working closely with the cybersecurity industry is the only way to bring down cybercrime operations, an FBI official said at Black Hat 2017.

BrickerBot malware attacks and destroys unsecure IoT devices

The security firm Radware has come across two new forms of Denial of Service (DOS) malware that is attacking and bricking Internet of Things devices for as yet unknown reasons.

Mirai 2.0 hits college in February with 54-hour long DDoS attack

A newer and more potent version of Mirai malware was used last month to pummel an unnamed U.S. college with a 54-hour long distributed denial of service (DDoS) attack.

Cybercrime Blotter: Ebury botnet creator Maxim Senakh pleads guilty

Russian national Maxim Senakh agreed to a plea deal on March 28 that could place him in prison for up to five years, paying restitution, and also being fined of up to $250,000 for creating and spreading the Ebury botnet.

Are 'bad bots' weaponising data centres to spread fake news?

As bad bots increasingly take up a greater share of internet traffic, are data centres providing the roads?

Trend Micro details new IoT DDoS threat

Trend Micro is reporting a new threat to Linux-based Internet of Things devices that is specifically able to exploit a specific vulnerability in surveillance cameras made by AVTech.

GhostAdmin botnet malware discovered

Cybersecurity researchers MalwareHunterTeam has uncovered a new botnet malware type it has dubbed GhostAdmin that is alive and working in the wild.

Same fate befalls Post Office broadband as hit DT?

With reports of outages to customers of Post Office broadband and TalkTalk, the attack that that nearly a million Deutsche Telekom customers over the weekend appears to have made its way to the UK's shores.

Imperva warns of automated registration bots, they're great at concealing fraud

One of Imperva's security researchers has warned of automated registration bots, says "they're great at concealing fraud."

Happy Birthday Conficker: Malware hits 8

November 21 marks the eighth anniversary of Conficker being discovered and according to researchers at ESET it is still going strong.

Researchers spot cybercrooks actively upgrading Mirai botnet

An researcher spotted threat actors actively updating and customizing the Mirai botnet source code that was leaked less than two weeks ago.

Mirai botnets linked to massive DDoS attacks on Dyn DNS, Flashpoint says

Flashpoint confirmed some of the devices used in the Dyn DNS attacks which took down more than a dozen websites, including Twitter and Spotify, were DVRs.

SANS calls for admins to secure IoT devices as manufacturers drag feet

SANS Institute researchers are calling on system admins to do their part in securing connected devices.