DDOS, Information Security and Internet

Internet Archive data breach impacted 31M users

Security Affairs

OCTOBER 11, 2024

The Internet Archive disclosed a data breach, the security incident impacted more than 31 million users of its “The Wayback Machine.” As of September 5, 2024, the Internet Archive held more than 42.1 Starting from Wednesday, the website archive.org was displaying a message informing visitors that it was hacked.

Data breaches

Data breaches Internet Internet DDOS

Internet Archive was breached twice in a month

Security Affairs

OCTOBER 21, 2024

The Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. The Internet Archive was breached via Zendesk, with users receiving warnings about stolen GitLab tokens due to improper token rotation after repeated alerts.

Internet

Internet Internet Data breaches Authentication

Massive DDoS attack brought down 25% Iranian Internet connectivity

Security Affairs

FEBRUARY 9, 2020

Iran comes under cyber-attack again, a massive offensive brought down a large portion of the Iranian access to the Internet. Iran infrastructures are under attack, a massive cyberattack brought down a large portion of the Iranian access to the Internet, according to the experts the national connectivity fell to 75%.

DDOS

DDOS Internet Internet Telecommunications

Cloudflare blocked a record-breaking 5.6 Tbps DDoS attack

Security Affairs

JANUARY 22, 2025

terabit-per-second (Tbps) distributed denial-of-service (DDoS) attack. Terabit per second (Tbps) DDoS attack, which is the largest attack ever reported. The previous largest DDoS attack blocked by Cloudflare occurred in October 2024 and peaked at 3.8 Cloudflare announced that it has blocked a record-breaking 5.6

DDOS

DDOS Malware Internet Internet

Major IPS in New Zealand hit by massive DDoS, Internet outages reported

Security Affairs

SEPTEMBER 5, 2021

A massive DDoS hit New Zealand ‘s third-largest internet operator isolating parts of the country from the Internet. A massive DDoS hit Vocus ISP, New Zealand ‘s third-largest internet operator, isolating parts of the country from the Internet. SecurityAffairs – hacking, DDoS).

DDOS

DDOS Internet Internet Telecommunications

Cloudflare mitigated new record-breaking DDoS attack of 3.8 Tbps

Security Affairs

OCTOBER 3, 2024

Cloudflare recently mitigated a new record-breaking DDoS attack, peaking at 3.8 Cloudflare reported that starting from early September, it has mitigated over 100 hyper-volumetric L3/4 DDoS attacks, with many exceeding 2 billion Pps and 3 Tbps. The largest DDoS attack peaked at 3.8 The largest DDoS attack peaked at 3.8

DDOS

DDOS Internet Internet Authentication

Yandex is under the largest DDoS attack in the history of Runet

Security Affairs

SEPTEMBER 9, 2021

The Russian internet service provider Yandex is under a massive distributed denial-of-service (DDoS) attack that began last week. The record magnitude of the massive DDoS attack was also confirmed by the US company Cloudflare, which specializes in the protection against such kinds of attacks.

DDOS

DDOS Internet Internet Firmware

Microsoft mitigated a record 2.4 Tbps DDoS attack in August

Security Affairs

OCTOBER 12, 2021

Microsoft Azure cloud service mitigated a massive DDoS attack of 2.4 terabytes per second (Tbps) at the end of August, it is the largest DDoS attack to date. terabytes per second (Tbps) DDoS attack at the end of August, it represents the largest DDoS attack recorded to date. ” reads the post published by Microsoft.

DDOS

DDOS Internet Internet Hacking

Unraveling the truth behind the DDoS attack from electric toothbrushes

Security Affairs

FEBRUARY 8, 2024

Several media reported that three million electric toothbrushes were compromised and recruited into a DDoS botnet. The Swiss newspaper Aargauer Zeitung first published the news of a DDoS attack, carried out on January 30, that involved three million compromised electric toothbrushes. Is it true? What the f is wrong with you people????

DDOS

DDOS IoT Media Internet

Akamai blocked the largest DDoS attack ever on its European customers

Security Affairs

JULY 28, 2022

This month Akamai blocked the largest distributed denial-of-service (DDoS) attack that hit an organization in Europe. On July 21, 2022, Akamai mitigated the largest DDoS attack that ever hit one of its European customers. SecurityAffairs – hacking, DDoS). Gbps and 659.6 Mpps over 14 hours.” Gbps and 659.6 Gbps and 659.6

DDOS

DDOS Internet Internet Hacking

AWS mitigated largest DDoS attack ever of 2.3 Tbps

Security Affairs

JUNE 17, 2020

Tbps DDoS attack, the largest ever, which surpassed the previous record of 1.7 Amazon announced it has mitigated the largest ever DDoS attack of 2.3 ” The report didn’t name the target of the DDoS attack, AWS experts only revealed that the magnitude was obtained with CLDAP reflection attack. Pierluigi Paganini.

DDOS

DDOS Advertising Internet Internet

A new botnet named M?ris is behind massive DDoS attack that hit Yandex

Security Affairs

SEPTEMBER 9, 2021

The massive DDoS attack that has been targeting the internet giant Yandex was powered b a completely new botnet tracked as M?ris. The record magnitude of the massive DDoS attack was also confirmed by the US company Cloudflare, which specializes in the protection against such kinds of attacks. technique for DDoS attacks.

DDOS

DDOS Internet Internet IoT

A massive DDoS knocked offline Belgian government websites

Security Affairs

MAY 4, 2021

A massive distributed denial of service (DDoS) attack shut down Belgiums’ government websites, internal networks were also impacted. A massive distributed denial of service (DDoS) attack hit most of the Belgium government ’s IT network, according to the media the attack also knocked offline internal systems. Around 7.30

DDOS

DDOS Government Education Media

IT Army of Ukraine disrupted internet providers in territories occupied by Russia

Security Affairs

OCTOBER 29, 2023

IT Army of Ukraine hacktivists have temporarily disrupted internet services in some of the territories that have been occupied by Russia. Ukrainian hacktivists belonging to the IT Army of Ukraine group have temporarily disabled internet services in some of the territories that have been occupied by the Russian army.

Internet

Internet Internet Telecommunications DDOS

Cloudflare mitigated the largest ever volumetric DDoS attack to date

Security Affairs

AUGUST 20, 2021

Web infrastructure and website security company Cloudflare announced to have mitigated the largest ever volumetric DDoS attack to date. Cloudflare, the web infrastructure and website security company, announced that it has mitigated the largest ever volumetric distributed denial of service (DDoS) attack to date.

DDOS

DDOS Telecommunications Internet Internet

Microsoft Fights Off Another Record DDoS Attack as Incidents Soar

eSecurity Planet

JANUARY 28, 2022

Microsoft in November fended off a massive distributed denial-of-service (DDoS) attack in its Azure cloud that officials said was the largest ever recorded, the latest in a wave of record attacks that washed over the IT industry in the second half of 2021. Also read: How to Stop DDoS Attacks: 6 Tips for Fighting DDoS Attacks.

DDOS

DDOS IoT Engineering Internet

Developer of DDoS Mirai based botnets sentenced to prison

Security Affairs

JUNE 26, 2020

A man accused to have developed distributed denial of service (DDoS) botnets based on the Mirai botnet was sentenced to 13 months in federal prison. Schuchman compromised hundreds of thousands of IoT devices, including home routers and IP cameras, to create multiple DDoS IoT botnets that he rented to carry out the attacks.

DDOS

DDOS IoT Advertising Internet

Cloudflare mitigated 2 Tbps DDoS attack, the largest attack it has seen to date

Security Affairs

NOVEMBER 15, 2021

Cloudflare announced to have mitigated a distributed denial-of-service (DDoS) attack that peaked at almost 2 terabytes per second (Tbps). is an American web infrastructure and website security company that provides content delivery network and DDoS mitigation services. SecurityAffairs – hacking, DDoS). Cloudflare, Inc.

DDOS

DDOS DNS IoT Internet

Experts warn of surge in DDoS attacks targeting education institutions

Security Affairs

SEPTEMBER 15, 2020

Experts warn of a surge in the DDoS attacks against education institutions and the academic industry across the world. The DDoS attacks are causing severe issues to the targeted education institutions such as temporarily takedown of the network and online classes. ” reads the analysis published by CheckPoint. Pierluigi Paganini.

Education

Education DDOS Advertising Cyber Attacks

Hoaxcalls Botnet expands the target list and adds new DDoS capabilities

Security Affairs

APRIL 24, 2020

The Hoaxcalls IoT botnet expanded the list of targeted devices and has added new distributed denial of service (DDoS) capabilities. The botnet was initially designed to launch DDoS attacks using UDP, DNS and HEX floods. Experts also noticed that the new variant implements 16 new DDoS capabilities. ” Radware concludes.

DDOS

DDOS IoT Advertising DNS

New Lucifer DDoS botnet targets Windows systems with multiple exploits

Security Affairs

JUNE 26, 2020

Upon infecting a system the bot turns it into a cryptomining client and could use it to launch distributed denial-of-service (DDoS) attacks. The malware author named the bot Satan DDoS, but Palo Alto Network’s Unit42 researchers dubbed it Lucifer because there’s another malware with the same name, the Satan Ransomware.

DDOS

DDOS Malware Advertising Passwords

OVHcloud mitigated a record-breaking DDoS attack in April 2024

Security Affairs

JULY 4, 2024

OVHcloud successfully mitigated a record-breaking DDoS attack in April, which reached 840 million packets per second (Mpps). The cloud services provider OVHcloud announced it has mitigated a record-breaking distributed denial of service (DDoS) attack earlier this year. ” reads the post published by OVHcloud.

DDOS

DDOS DNS Internet Internet

Hackers abuse Plex Media servers for DDoS amplification attacks

Security Affairs

FEBRUARY 5, 2021

Netscout experts warn of DDoS-for-hire services abusing Plex Media servers to bounce junk traffic and amplify DDoS attacks. Security researchers from Netscout discovered DDoS-for-hire services have found a way to abuse Plex Media servers to bounce junk traffic and amplify distributed denial of service (DDoS) attacks.

DDOS

DDOS Media Internet Internet

DDoS attacks leverages Plex media server

SC Magazine

FEBRUARY 4, 2021

Netscout is reporting a spate of distributed denial-of-service (DDoS) attacks leveraging a problematic engineering decision in the popular Plex media server. “That includes the broadband internet access router. “That includes the broadband internet access router.

DDOS

DDOS Media Engineering Architecture

New Zealand stock exchange (NZX) halted 2 days by DDoS attack

Security Affairs

AUGUST 27, 2020

New Zealand’s stock exchange (NZX) confirmed it was hit by a massive distributed denial of service (DDoS) attack from abroad that knocked it offline two days. The DDoS attack impacted traders, anyway financial or personal information of the users was not accessed. Pierluigi Paganini.

DDOS

DDOS Marketing Advertising Internet

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. Upon installing the threat, the bot drops a file in /tmp/.pwned

DDOS

DDOS Architecture Malware Cybercrime

T-Mobile suffered a major outage in the US allegedly caused by a massive DDoS attack

Security Affairs

JUNE 16, 2020

Wireless carrier T-Mobile suffered a major outage in the United States, that impacted service at other carriers, due to a “massive” DDoS attack. Wireless carrier T-Mobile suffered a massive DDoS attack that caused a major outage in the United States that impacted service at other carriers due to a “massive” DDoS attack.

DDOS

DDOS Mobile Wireless Advertising

SANDMAN AND FINEPROXY BEHIND THE DDOS ATTACKS AGAINST TIMETV.LIVE

Security Affairs

APRIL 28, 2020

Timetv.live is the latest Azeri news site targeted by Denial of Service (DDoS) attacks launched by Sandman threat actor, the attack took place on March 21, 2020. Just like many other DDoS attacks we have seen in the past against Azeri media, the attacker monitors the success of the floods using the HostTracker service.

DDOS

DDOS Media VPN Advertising

DDoS-for-Hire Services operator sentenced to 13 months in prison

Security Affairs

NOVEMBER 15, 2019

the administrator of DDoS-for-hire services was sentenced to 13 months in prison, and additional three years of supervised release. Usatyuk , a man that was operating several DDoS-for-hire services was sentenced to 13 months in prison, and additional three years of supervised release. Sergiy P. , hours of network downtime.

DDOS

DDOS Computers and Electronics Advertising Internet

New ‘HTTP/2 Rapid Reset’ technique behind record-breaking DDoS attacks

Security Affairs

OCTOBER 10, 2023

A new DDoS technique named ‘HTTP/2 Rapid Reset’ is actively employed in attacks since August enabling record-breaking attacks. Researchers disclosed a new zero-day DDoS attack technique, named ‘HTTP/2 Rapid Reset’, that was exploited since August in record-breaking attacks. ” concludes the report. .”

DDOS

DDOS Internet Internet Risk

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Chaput said the spammers used more than 1,500 Internet addresses across 400 providers to register new accounts, which then followed popular accounts on Mastodon and sent private mentions to the followers of those accounts. Shortly after that, those same servers came under a sustained distributed denial-of-service (DDoS) attack.

Scams

Scams DDOS Cryptocurrency Accountability

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Security Affairs

OCTOBER 11, 2023

A Mirai-based DDoS botnet tracked as IZ1H9 has added thirteen new exploits to target routers from different vendors, including D-Link, Zyxel, and TP-Link. The botnet supports multiple DDoS attacks, including UDP, HTTP Flood, UDP Plain, and TCP SYN. “The exposure of vulnerable devices can result in severe security risks.

DDOS

DDOS Wireless Architecture IoT

Experts warn of mass exploitation of critical PHP flaw CVE-2024-4577

Security Affairs

MARCH 10, 2025

Therefore, it is recommended that users conduct a comprehensive asset assessment, verify their usage scenarios, and update PHP to the latest version to ensure security. Akamai researchers also observed threat actors behind the DDoS botnet Muhstik exploiting this vulnerability. ” concludes GreyNoise.

DDOS

DDOS Security Intelligence Malware Hacking

FBI seized 13 domains linked to DDoS-for-hire platforms

Security Affairs

MAY 9, 2023

DoJ announced the seizure of 13 new domains associated with DDoS-for-hire platforms as part of Operation PowerOFF. Justice Department announced the seizure of 13 domains linked to DDoS-for-hire services as part of a coordinated international law enforcement effort known as Operation PowerOFF. com, ragebooter(.)com, com, downthem(.)org

DDOS

DDOS Internet Internet Hacking

FBI seized 48 domains linked to DDoS-for-Hire service platforms

Security Affairs

DECEMBER 15, 2022

Department of Justice (DoJ) seized forty-eight domains that offered DDoS-for-Hire Service Platforms to crooks. Department of Justice (DoJ) this week announced the seizure of 48 domains associated with the DDoS-for-Hire Service platforms (aka Booter services) used by threat actors. SecurityAffairs – hacking, DDoS). cyberstress.us

DDOS

DDOS Internet Internet Education

Mantis botnet powered the largest HTTPS DDoS attack in June

Security Affairs

JULY 14, 2022

The largest HTTPS DDoS attack recently mitigated by Cloudflare was launched by the Mantis botnet. In June 2022, DDoS mitigation firm Cloudflare announced it has mitigated the largest HTTPS DDoS attack that was launched by a botnet they have called Mantis. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

DDOS

DDOS Telecommunications Media Internet

Multiple DDoS botnets were observed targeting Zyxel devices

Security Affairs

JULY 22, 2023

Researchers warn of several DDoS botnets exploiting a critical flaw tracked as CVE-2023-28771 in Zyxel devices. Fortinet FortiGuard Labs researchers warned of multiple DDoS botnets exploiting a vulnerability impacting multiple Zyxel firewalls. Mirai botnets are frequently used to conduct DDoS attacks.”

DDOS

DDOS Firmware VPN Firewall

Microsoft mitigated a 3.47 Tbps DDoS attack, the largest one to date

Security Affairs

JANUARY 27, 2022

Tbps distributed denial of service (DDoS) attack targeting an Azure customer. Microsoft announced that its Azure DDoS protection platform has mitigated a record 3.47 The news of the attack was reported in the “ Azure DDoS Protection —2021 Q3 and Q4 DDoS attack trends.” ” reads the report. Tbps and 2.55

DDOS

DDOS Digital transformation DNS Cyber Risk

Pro-Russian hackers launched a massive DDoS attack against Norway

Security Affairs

JUNE 30, 2022

Norway’s National Security Authority (NSM) confirmed that a DDoS attack took down some of the country’s most important websites. ” Norway’s National Security Authority also issued instructions to local organizations for the mitigation of DDoS attacks.

DDOS

DDOS Government Cyber Attacks Hacking

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Security Affairs

OCTOBER 3, 2019

Dutch police seized a bulletproof hosting service in a major takedown, the infrastructure was used by tens of IoT botnets involved in DDoS attacks. The servers were hosted at an unnamed data center in Amsterdam, it was used by tens of IoT botnets involved in DDoS attacks worldwide. ” continues the statement. Pierluigi Paganini.

DDOS

DDOS IoT Cybercrime Advertising

MikroTik botnet relies on DNS misconfiguration to spread malware

Security Affairs

JANUARY 16, 2025

” The botnet size enables diverse attacks, from DDoS to phishing, spreading malware via SOCKS proxies, and amplifying C2 operations while masking attackers’ identities.

DNS

DNS Malware Firmware Authentication

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 13, 2024

The Mexican Drug Cartels Want You Casio: Notice of Partial Service Outage and Information Leak Caused by Ransomware Attack He founded a “startup” to access sanctioned Russian websites: the cyber police of Khmelnytskyi region exposed the hacker Hacked ‘AI Girlfriend’ Data Shows Prompts Describing Child Sexual Abuse Malware Over 300,000!

Data breaches

Data breaches Cryptocurrency Artificial Intelligence Cybercrime

Crooks target Ukraine’s IT Army with a tainted DDoS tool

Security Affairs

MARCH 10, 2022

Threat actors are spreading password-stealing malware disguised as a security tool to target Ukraine’s IT Army. Cisco Talos researchers have uncovered a malware campaign targeting Ukraine’s IT Army , threat actors are using infostealer malware mimicking a DDoS tool called the “Liberator.” Pierluigi Paganini.

DDOS

DDOS Malware Digital transformation Advertising

China used the Great Cannon DDoS Tool against forum used by Hong Kong protestors

Security Affairs

DECEMBER 5, 2019

China is accused to have used the “Great Cannon” DDoS tool to launch attacks against LIHKG , a forum used by Hong Kong residents to organize protests. The last time the Great Cannon was used by the Chinese authorities was in 2017 when it was involved in DDoS attacks on the Mingjingnews.com site, a US-based Chinese media outlet.

DDOS

DDOS Firewall Advertising Government

Internet Archive data breach impacted 31M users

Internet Archive was breached twice in a month

Trending Sources

Massive DDoS attack brought down 25% Iranian Internet connectivity

Cloudflare blocked a record-breaking 5.6 Tbps DDoS attack

Major IPS in New Zealand hit by massive DDoS, Internet outages reported

Cloudflare mitigated new record-breaking DDoS attack of 3.8 Tbps

Yandex is under the largest DDoS attack in the history of Runet

Microsoft mitigated a record 2.4 Tbps DDoS attack in August

Unraveling the truth behind the DDoS attack from electric toothbrushes

Akamai blocked the largest DDoS attack ever on its European customers

AWS mitigated largest DDoS attack ever of 2.3 Tbps

A new botnet named M?ris is behind massive DDoS attack that hit Yandex

A massive DDoS knocked offline Belgian government websites

IT Army of Ukraine disrupted internet providers in territories occupied by Russia

Cloudflare mitigated the largest ever volumetric DDoS attack to date

Microsoft Fights Off Another Record DDoS Attack as Incidents Soar

Developer of DDoS Mirai based botnets sentenced to prison

Cloudflare mitigated 2 Tbps DDoS attack, the largest attack it has seen to date

Experts warn of surge in DDoS attacks targeting education institutions

Hoaxcalls Botnet expands the target list and adds new DDoS capabilities

New Lucifer DDoS botnet targets Windows systems with multiple exploits

OVHcloud mitigated a record-breaking DDoS attack in April 2024

Hackers abuse Plex Media servers for DDoS amplification attacks

DDoS attacks leverages Plex media server

New Zealand stock exchange (NZX) halted 2 days by DDoS attack

Enemybot, a new DDoS botnet appears in the threat landscape

T-Mobile suffered a major outage in the US allegedly caused by a massive DDoS attack

SANDMAN AND FINEPROXY BEHIND THE DDOS ATTACKS AGAINST TIMETV.LIVE

DDoS-for-Hire Services operator sentenced to 13 months in prison

New ‘HTTP/2 Rapid Reset’ technique behind record-breaking DDoS attacks

Interview With a Crypto Scam Investment Spammer

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Experts warn of mass exploitation of critical PHP flaw CVE-2024-4577

FBI seized 13 domains linked to DDoS-for-hire platforms

FBI seized 48 domains linked to DDoS-for-Hire service platforms

Mantis botnet powered the largest HTTPS DDoS attack in June

Multiple DDoS botnets were observed targeting Zyxel devices

Microsoft mitigated a 3.47 Tbps DDoS attack, the largest one to date

Pro-Russian hackers launched a massive DDoS attack against Norway

Dutch police shut down bulletproof service hosting tens of DDoS botnets

MikroTik botnet relies on DNS misconfiguration to spread malware

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Crooks target Ukraine’s IT Army with a tainted DDoS tool

China used the Great Cannon DDoS Tool against forum used by Hong Kong protestors

Stay Connected