CSOonline

‘Win-DDoS’: Researchers unveil botnet technique exploiting Windows domain controllers

SafeBreach researchers demonstrate how attackers can crash Windows domain controllers and build a botnet using unauthenticated RPC and LDAP vulnerabilities. At DEF CON 33, security researchers ...
Hosted on MSN

Botnet surge and DNS changes reshape internet security landscape

Security researchers report the largest tracked botnet has expanded tenfold to 13.5 million devices, fueling record DDoS attacks over 2Tbps. Meanwhile, DNS practices are evolving, with encrypted DNS ...
Hosted on MSN

RondoDox botnet fires 'exploit shotgun' at nearly every router and internet-connected home device

A new RondoDox botnet campaign uses an "exploit shotgun" - fire at everything, see what hits - to target 56 vulnerabilities across at least 30 different vendors' routers, DVRs, CCTV systems, web ...
Arabian Post

Botnet turns Jenkins into game weapon

A new botnet campaign is turning poorly secured Jenkins servers into attack nodes aimed at online game infrastructure, ...
Bleeping Computer

Botnet targets Basic Auth in Microsoft 365 password spray attacks

A massive botnet of over 130,000 compromised devices is conducting password-spray attacks against Microsoft 365 (M365) accounts worldwide, targeting basic authentication to evade multi-factor ...
TechSpot

Cybercriminals target smart homes as BadBox 2.0 botnet spreads globally

A hot potato: The resurgence of BadBox 2.0 poses new risks that consumers should be aware of. As unregulated, low-cost IoT devices become increasingly common in households around the world, it's ...