2022, DDOS and IoT - Cyber Security Informer

New Eleven11bot botnet infected +86K IoT devices

Security Affairs

MARCH 5, 2025

The Eleven11bot botnet has infected over 86,000 IoT devices, mainly security cameras and network video recorders (NVRs). Researchers from Nokia Deepfield Emergency Response Team (ERT) discovered a new botnet named Eleven11bot that has already infected over 86,000 IoT devices. ” wrote Nokia security researchers Jrme Meyer.

IoT

IoT DDOS Passwords Hacking

DDoS attacks in Q3 2022

SecureList

NOVEMBER 7, 2022

In Q3 2022, DDoS attacks were, more often than not, it seemed, politically motivated. As before, most news was focused on the conflict between Russia and Ukraine, but other high-profile events also affected the DDoS landscape this quarter. The attackers stated on Telegram that they were “testing a new DDoS method.”

DDOS

DDOS Computers and Electronics Internet Internet

DDoS attacks in Q1 2022

SecureList

APRIL 25, 2022

The DDoS landscape in Q1 2022 was shaped by the ongoing conflict between Russia and Ukraine: a significant part of all DDoS-related news concerned these countries. In mid-January, the website of Kyiv Mayor Vitali Klitschko was hit by a DDoS attack, and the websites of a number of Ukrainian ministries were defaced.

DDOS

DDOS Cybercrime Internet Internet

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

STEPS FORWARD: Regulators are on the move to set much needed IoT security rules of the road

The Last Watchdog

SEPTEMBER 5, 2023

New government rules coupled with industry standards meant to give formal shape to the Internet of Things (IoT) are rapidly quickening around the globe. When it comes to IoT, we must arrive at specific rules of the road if we are to tap into the full potential of smart cities, autonomous transportation and advanced healthcare.

IoT

IoT Government Internet Internet

Overview of IoT threats in 2023

SecureList

SEPTEMBER 21, 2023

IoT devices (routers, cameras, NAS boxes, and smart home components) multiply every year. The first-ever large-scale malware attacks on IoT devices were recorded back in 2008, and their number has only been growing ever since. Telnet, the overwhelmingly popular unencrypted IoT text protocol, is the main target of brute-forcing.

IoT

IoT DDOS Passwords Malware

Attacks Escalating Against Linux-Based IoT Devices

eSecurity Planet

JANUARY 20, 2022

Incidents of malware targeting Linux-based Internet of Things (IoT) devices jumped by more than a third in 2021, with three malware families the primary drivers behind the increase. That echoes similar reports that have shown an increase in DDoS attacks worldwide. Also read: Top 8 DDoS Protection Service Providers for 2022.

IoT

IoT DDOS Malware Internet

Microsoft Fights Off Another Record DDoS Attack as Incidents Soar

eSecurity Planet

JANUARY 28, 2022

Microsoft in November fended off a massive distributed denial-of-service (DDoS) attack in its Azure cloud that officials said was the largest ever recorded, the latest in a wave of record attacks that washed over the IT industry in the second half of 2021. Also read: How to Stop DDoS Attacks: 6 Tips for Fighting DDoS Attacks.

DDOS

DDOS IoT Engineering Internet

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. Upon installing the threat, the bot drops a file in /tmp/.pwned

DDOS

DDOS Architecture Malware Cybercrime

The IoT Cybersecurity Act of 2020: Implications for Devices

eSecurity Planet

JANUARY 22, 2021

billion Internet of Things (IoT) devices. As more information about IoT device vulnerabilities is published, the pressure on industry and government authorities to enhance security standards might be reaching a tipping point. government, standards will not apply to the IoT market at-large. Implications for IoT devices.

IoT

IoT Cybersecurity Manufacturing Government

New RapperBot Campaign targets game servers with DDoS attacks

Security Affairs

NOVEMBER 16, 2022

Fortinet researchers discovered new samples of RapperBot used to build a botnet to launch Distributed DDoS attacks against game servers. Fortinet FortiGuard Labs researchers have discovered new samples of the RapperBot malware that are being used to build a DDoS botnet to target game servers. ” continues the report.

DDOS

DDOS IoT Malware Architecture

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Security Affairs

OCTOBER 11, 2023

A Mirai-based DDoS botnet tracked as IZ1H9 has added thirteen new exploits to target routers from different vendors, including D-Link, Zyxel, and TP-Link. “IZ1H9, a Mirai variant, infects Linux-based networked devices, especially IoT devices, turning them into remote-controlled bots for large-scale network attacks.”

DDOS

DDOS Wireless Architecture IoT

Russia-linked Hackers Launch DDoS Attacks on U.S. Airport Websites

eSecurity Planet

OCTOBER 10, 2022

A series of distributed denial of service ( DDoS ) attacks today briefly took down the websites of over a dozen U.S. See the DDoS Protection Service Providers. Killnet has been launching similar DDoS attacks for months, targeting everything from Romanian government websites to Lithuania’s Secure Data Transfer Network.

DDOS

DDOS CISO Cloud Migration Internet

Updated Kmsdx botnet targets IoT devices

Security Affairs

AUGUST 28, 2023

Researchers spotted an updated version of the KmsdBot botnet that is now targeting Internet of Things (IoT) devices. The Akamai Security Intelligence Response Team (SIRT) discovered a new version of the KmsdBot botnet that employed an updated Kmsdx binary targeting Internet of Things (IoT) devices.

IoT

IoT DDOS Architecture Internet

New RapperBot Campaign Aims to Launch DDoS Attacks on Game Servers

Heimadal Security

NOVEMBER 16, 2022

The “RapperBot” malware group has been rapidly expanding since mid-June 2022. Researchers discovered new samples of RapperBot malware used to build a botnet capable of carrying Distributed Denial of Service (DDoS) attacks against game servers.

DDOS

DDOS IoT Malware Cybersecurity

Mirai V3G4 botnet exploits 13 flaws to target IoT devices

Security Affairs

FEBRUARY 16, 2023

During the second half of 2022, a variant of the Mirai bot, tracked as V3G4, targeted IoT devices by exploiting tens of flaws. Palo Alto Networks Unit 42 researchers reported that a Mirai variant called V3G4 was attempting to exploit several flaws to infect IoT devices from July to December 2022.

IoT

IoT DDOS Encryption Malware

New Mirai botnet targets tens of flaws in popular IoT devices

Security Affairs

JUNE 22, 2023

Since March 2023, researchers at Palo Alto Networks Unit 42 have observed a new variant of the Mirai botnet targeting multiple vulnerabilities in popular IoT devices. Since the beginning of the attacks observed in October 2022, threat actors have enhanced the botnet by integrating exploits for new vulnerabilities. .

IoT

IoT Malware Encryption DDOS

GUEST ESSAY: Lessons learned in 2021 as cloud services, mobility and cybersecurity collided

The Last Watchdog

DECEMBER 9, 2021

Here are a few important trends that you should consider for 2022: Single vendor SASE play. In 2022, SASE will accelerate to become the gold standard for organizations looking to achieve consistency, flexibility, and high performance for both their security and networking needs. Securing Iot, MEC. Work from anywhere, forever

Mobile

Mobile IoT Cybersecurity Digital transformation

Cybersecurity Outlook 2022: Third-party, Ransomware and AI Attacks Will Get Worse

eSecurity Planet

JANUARY 6, 2022

About the only consensus on cybersecurity in 2022 is that things will get uglier, but in what ways? Here are some of the more interesting predictions for 2022 we’ve seen from cybersecurity researchers. Here are some of the more interesting predictions for 2022 we’ve seen from cybersecurity researchers.

Ransomware

Ransomware Cybersecurity Artificial Intelligence CISO

New Ballista Botnet spreads using TP-Link flaw. Is it an Italian job?

Security Affairs

MARCH 12, 2025

The vulnerability was first reported to ZDI during the Pwn2Own Toronto 2022 event. It spreads by exploiting CVE-2023-1389 and can execute remote shell commands or launch DoS/DDoS attacks when instructed by the C2 server. “IoT devices have been constantly targeted by threat actors for multiple reasons” concludes the report.

IoT

IoT Malware Encryption DDOS

A new Zerobot variant spreads by exploiting Apache flaws

Security Affairs

DECEMBER 22, 2022

Microsoft Threat Intelligence Center (MSTIC) researchers discovered a new variant of the Zerobot botnet (aka ZeroStresser) that was improved with the capabilities to target more Internet of Things (IoT) devices. com) with links to the bot was among the 48 domains associated with DDoS-for-hire services seized by the FBI in December.

IoT

IoT DDOS Malware Firmware

Best Network Monitoring Tools for 2022

eSecurity Planet

JANUARY 26, 2022

This article looks at 15 of the best network monitoring tools and what to consider when evaluating monitoring solutions in 2022. Best Networking Monitoring Tools for 2022. Read more : Best SIEM Tools of 2022. Also read: Top Cybersecurity Startups to Watch in 2022. Catchpoint. Datadog Features.

Marketing

Marketing DDOS Threat Detection DNS

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

MAY 30, 2022

The botnet was first discovered by Fortinet in March, the DDoS botnet targeted several routers and web servers by exploiting known vulnerabilities. The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion. The botnet targets multiple architectures, including arm, bsd, x64, and x86.

Malware

Malware DDOS IoT Cybercrime

Router security in 2021

SecureList

JUNE 8, 2022

Number of router vulnerabilities according to cve.mitre.org, 2010–2022 ( download ). Number of router vulnerabilities according to nvd.nist.gov, 2010–2022 ( download ). search for smart devices with the default password in the summer of last year revealed more than 27,000 hits, a similar search in April 2022 returned only 851.

DDOS

DDOS Passwords IoT Firmware

The government of Lithuania confirmed it had been hit by an intense cyberattack

Security Affairs

JUNE 27, 2022

The Lithuanian Ministry of Defense announced that Lithuanian state institutions and companies are under a massive DDoS attack. Lithuanian state institutions and companies are under intense DDoS attack. pic.twitter.com/7onnYtceJi — Lithuanian MOD (@Lithuanian_MoD) June 27, 2022.

Government

Government DDOS Media IoT

Why Healthcare IoT Requires Strong Machine Identity Management

Security Boulevard

MAY 30, 2022

Why Healthcare IoT Requires Strong Machine Identity Management. Mon, 05/30/2022 - 12:04. The healthcare industry has been leveraging IoT devices for years, steadily increasing its use in facilities and patient care. By 2027, the IoT in Healthcare market is expected to reach $290 billion , up from just $60 billion in 2019.

Healthcare

Healthcare IoT Manufacturing Risk

TP-Link High-Severity Flaw Added to Mirai Botnet Arsenal

Heimadal Security

APRIL 27, 2023

A TP-Link Archer A21 (AX1800) consumer-grade WiFi router vulnerability has been used by Mirai botnet to launch DDoS attacks against IoT devices. The flaw in the TP-Link Archer AX21 firmware was discovered back in December 2022, and the company released a patch in March.

Firmware

Firmware DDOS IoT Cybersecurity

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Webroot

JANUARY 7, 2022

In particular, we witnessed an increase in distributed denial of service (DDoS) attacks and a surge in the usage of the internet of things (IoT). The free operation of cryptocurrency exchanges and marketplaces will be significantly impacted by government regulation and criminal investigation in 2022, especially in the United States.

Cybercrime

Cybercrime Ransomware Phishing Cryptocurrency

Clouding the issue: what cloud threats lie in wait in 2022?

Malwarebytes

MARCH 17, 2022

BlackCat didn’t only demand a ransom under threat of data leaks; it also promised to fire up a DDoS (distributed denial of service) if the ransom wasn’t paid. Whether your area of interest is IOT, ransomware, or even the Metaverse, it’s well worth digging into some of these topics and keeping one eye on the news.

Cryptocurrency

Cryptocurrency Backups Phishing Password Management

Russia-linked Fronton botnet could run disinformation campaigns

Security Affairs

MAY 23, 2022

Fronton is a distributed denial-of-service (DDoS) botnet that was used by Russia-linked threat actors for coordinated disinformation campaigns. The group released sensitive documents and contracts about an IoT botnet, codename Fronton, built by the contractor 0day Technologies. ru to 0day[.]llc. ” continues the report.

DDOS

DDOS Media Hacking Engineering

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Security Affairs

JUNE 6, 2022

Besides proprietary tools, they’re leveraging MHDDoS, Blood, Karma DDoS, Hasoki, DDoS Ripper and GoldenEye scripts to generate malicious traffic on Layer 7 which may impact the availability of WEB resources. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS.

Government

Government DDOS Cyber Attacks Hacking

Beastmode Mirai botnet now includes exploits for Totolink routers

Security Affairs

APRIL 2, 2022

Operators behind the Mirai-based distributed denial-of-service (DDoS) botnet Beastmode (aka B3astmode) added exploits for Totolink routers. The Mirai -based distributed denial-of-service (DDoS) botnet Beastmode (aka B3astmode) now includes exploits for Totolink routers. CVE-2022-26186 targets TOTOLINK N600R and A7100RU.

DDOS

DDOS Firmware Surveillance IoT

New Linux botnet RapperBot brute-forces SSH servers

Security Affairs

AUGUST 5, 2022

RapperBot is a new botnet employed in attacks since mid-June 2022 that targets Linux SSH servers with brute-force attacks. Researchers from FortiGuard Labs have discovered a new IoT botnet tracked as RapperBot which is active since mid-June 2022.

IoT

IoT Malware Passwords Authentication

Cybersecurity threats: what awaits us in 2023?

SecureList

NOVEMBER 9, 2022

As for KSB 2022, we invited notable experts to share their insights and unbiased opinions on what we should expect from cybersecurity in the following year. And that (b) we are also likely to see a steep increase in DDoS extortion campaigns as the Cyberwar in Ukraine leads to all-time-high levels of DDoS attacks. and the E.U.

Cybersecurity

Cybersecurity Cyber Insurance Cybercrime IoT

Best Cybersecurity Software & Tools for 2022

eSecurity Planet

APRIL 29, 2022

XDR typically pairs well with secure access service edge (SASE) platforms to include coverage for internet of things (IoT) devices and the network edge. Firepower NGFWs provide advanced malware protection, security intelligence, sandboxing, DDoS mitigation, and a next-generation intrusion prevention system. Trend Micro Vision One.

Software

Software Cybersecurity Firewall Antivirus

5 Linux malware families SMBs should protect themselves against

Malwarebytes

JUNE 8, 2022

There are dozens of Linux malware families out there today threatening SMBs with anything from ransomware to DDoS attacks. 024BTC (~$720 USD as of June 2022). Mirai, a botnet responsible for the “ takedown of the Internet ” in 2016, takes advantage of this by hijacking IoT hardware to launch DDoS attacks. Cloud Snooper.

Malware

Malware IoT DDOS Firewall

Experts warn of a surge of attacks exploiting a Realtek Jungle SDK RCE (CVE-2021-35394)

Security Affairs

JANUARY 26, 2023

Experts warn of a spike in the attacks that between August and October 2022 attempted to exploit a Realtek Jungle SDK RCE (CVE-2021-35394). Palo Alto Networks researchers reported that between August and October 2022 the number of attacks that attempted to exploit a Realtek Jungle SDK RCE ( CVE-2021-35394 ) (CVSS score 9.8)

DDOS

DDOS IoT Manufacturing Malware

CISA adds three new bugs to Known Exploited Vulnerabilities Catalog

Security Affairs

MARCH 8, 2023

A proof of concept (PoC) exploit code for this vulnerability was published on GitHub since December 2022. The CVE-2022-33891 flaw is a command injection vulnerability in the Apache Spark. The third vulnerability added to the catalog, tracked as CVE-2022-28810, is a remote code execution issue in Zoho ManageEngine ADSelfService Plus.

DDOS

DDOS IoT Software Internet

Security Affairs newsletter Round 407 by Pierluigi Paganini

Security Affairs

FEBRUARY 19, 2023

Twitter will allow using the SMS-based two-factor authentication (2FA) only to its Blue subscribers GoDaddy discloses a new data breach Fortinet fixes critical vulnerabilities in FortiNAC and FortiWeb German airport websites hit by DDos attacks once again Cisco fixed critical RCE bug in ClamAV Open-Source Antivirus engine CISA adds Cacti, Office, Windows (..)

DDOS

DDOS Data breaches Ransomware Hacking

InfectedSlurs botnet targets QNAP VioStor NVR vulnerability

Security Affairs

DECEMBER 17, 2023

In November, Akamai warned of a new Mirai -based DDoS botnet, named InfectedSlurs , actively exploiting two zero-day vulnerabilities to infect routers and video recorder (NVR) devices. The researchers discovered the botnet in October 2023, but they believe it has been active since at least 2022. ” concludes the report.

Firmware

Firmware Wireless DDOS IoT

Muhstik Botnet Targeting Redis Servers Using Recently Disclosed Vulnerability

Security Affairs

MARCH 28, 2022

The Muhstik botnet has been observed targeting Redis servers exploiting the recently disclosed CVE-2022-0543 vulnerability. Muhstik is a botnet that is known to use web application exploits to compromise IoT devices, it has been around for at least 2018. This vulnerability exists in some Redis Debian packages. 246.224.219”.

DDOS

DDOS IoT Hacking Malware

Easily Exploitable Linux Flaw Exposes All Distributions: Qualys

eSecurity Planet

JANUARY 26, 2022

See also: Top Vulnerability Management Tools for 2022. Also read: Best Patch Management Software for 2022. With various Linux builds and distributions at the heart of cloud infrastructures, mobile and IoT, it presents a massive opportunity for threat actors,” a CrowdStrike researcher wrote in a blog post.

Manufacturing

Manufacturing IoT Software DDOS

Ukraine-Russia Conflict: Ukraine Alerts Energy Enterprises to Possible Cyberattack Escalation

Security Boulevard

SEPTEMBER 30, 2022

1) The release also cites possible “DDoS attacks” on Ukraine’s allies, Poland, and unnamed Baltic nations. DDoS attacks, mentioned in the alert, are another threat to disruption for energy enterprises and more. EclecticIQ analysts observed many wiper variants reported targeting Ukraine in 2022. 27 , 30 ).

Energy and Utilities

Energy and Utilities DDOS Government Malware

26 Cyber Security Stats Every User Should Be Aware Of in 2024

Security Affairs

FEBRUARY 8, 2024

Cyber Insurance: US cyber insurance premiums soared by 50% in 2022, reaching $7.2 billion in 2022 and is expected to grow to about $102.78 IoT Vulnerabilities: With the proliferation of Internet of Things (IoT) devices, the number of IoT-related cyber attacks is expected to increase by 25% in 2024.

Social Engineering

Social Engineering Cyber Attacks Cyber Insurance IoT

Machine Identities are Essential for Securing Smart Manufacturing

Security Boulevard

FEBRUARY 28, 2022

Mon, 02/28/2022 - 11:55. The following are six advantages of IoT in the manufacturing industry. Integrating IoTs into monitoring both equipment settings and the outcomes of each production step helps manufacturers detect quality problems at the source. . Machine Identities are Essential for Securing Smart Manufacturing.

Manufacturing

Manufacturing IoT Authentication Artificial Intelligence

New Eleven11bot botnet infected +86K IoT devices

DDoS attacks in Q3 2022

Webinars

Trending Sources

DDoS attacks in Q1 2022

Webinars

STEPS FORWARD: Regulators are on the move to set much needed IoT security rules of the road

Overview of IoT threats in 2023

Attacks Escalating Against Linux-Based IoT Devices

Microsoft Fights Off Another Record DDoS Attack as Incidents Soar

Enemybot, a new DDoS botnet appears in the threat landscape

The IoT Cybersecurity Act of 2020: Implications for Devices

New RapperBot Campaign targets game servers with DDoS attacks

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Russia-linked Hackers Launch DDoS Attacks on U.S. Airport Websites

Updated Kmsdx botnet targets IoT devices

New RapperBot Campaign Aims to Launch DDoS Attacks on Game Servers

Mirai V3G4 botnet exploits 13 flaws to target IoT devices

New Mirai botnet targets tens of flaws in popular IoT devices

GUEST ESSAY: Lessons learned in 2021 as cloud services, mobility and cybersecurity collided

Cybersecurity Outlook 2022: Third-party, Ransomware and AI Attacks Will Get Worse

New Ballista Botnet spreads using TP-Link flaw. Is it an Italian job?

A new Zerobot variant spreads by exploiting Apache flaws

Best Network Monitoring Tools for 2022

EnemyBot malware adds new exploits to target CMS servers and Android devices

Router security in 2021

The government of Lithuania confirmed it had been hit by an intense cyberattack

Why Healthcare IoT Requires Strong Machine Identity Management

TP-Link High-Severity Flaw Added to Mirai Botnet Arsenal

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Clouding the issue: what cloud threats lie in wait in 2022?

Russia-linked Fronton botnet could run disinformation campaigns

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Beastmode Mirai botnet now includes exploits for Totolink routers

New Linux botnet RapperBot brute-forces SSH servers

Cybersecurity threats: what awaits us in 2023?

Best Cybersecurity Software & Tools for 2022

5 Linux malware families SMBs should protect themselves against

Experts warn of a surge of attacks exploiting a Realtek Jungle SDK RCE (CVE-2021-35394)

CISA adds three new bugs to Known Exploited Vulnerabilities Catalog

Security Affairs newsletter Round 407 by Pierluigi Paganini

InfectedSlurs botnet targets QNAP VioStor NVR vulnerability

Muhstik Botnet Targeting Redis Servers Using Recently Disclosed Vulnerability

Easily Exploitable Linux Flaw Exposes All Distributions: Qualys

Ukraine-Russia Conflict: Ukraine Alerts Energy Enterprises to Possible Cyberattack Escalation

26 Cyber Security Stats Every User Should Be Aware Of in 2024

Machine Identities are Essential for Securing Smart Manufacturing

Stay Connected