Game servers targeted by new RapperBot DDoS attacks

Game servers have been subjected to distributed denial-of-service attacks using new RapperBot malware samples last month, reports The Hacker News. While RapperBot was initially found to only facilitate brute-force attacks against SSH servers permitting password authentication, the updated malware could also enable Telnet brute-forcing and denial-of-service attacks, a report from Fortinet FortiGuard Labs revealed. Appliances operating on ARM, PowerPC, MIPS, SPARC, and SH4 architectures could be compromised by the new malware. Meanwhile, the report also noted similarities between the latest campaign and other RapperBot operations as early as May 2021, with the Telnet spreader module discovered to have been reintroduced to the malware last month following its removal after August 2021. "Based on the undeniable similarities between this new campaign and the previously reported RapperBot campaign, it is highly likely that they are being operated by a single threat actor or by different threat actors with access to a privately-shared base source code," said researchers.