The cybercriminals in control of Kimwolf — a disruptive botnet that has infected more than 2 million devices — recently shared a screenshot indicating they’d compromised the control panel for Badbox 2.0, a vast China-based botnet powered by malicious software that comes pre-installed on many Android TV streaming boxes. Both the FBI and Google say…
Category: Internet of Things (IoT)
Asia Pacific, Global Security News, Internet of Things (IoT), Latest Warnings, The Coming Storm, Web Fraud 2.0
Kimwolf Botnet Lurking in Corporate, Govt. Networks
A new Internet-of-Things (IoT) botnet called Kimwolf has spread to more than 2 million devices, forcing infected systems to participate in massive distributed denial-of-service (DDoS) attacks and to relay other malicious and abusive Internet traffic. Kimwolf’s ability to scan the local networks of compromised systems for other IoT devices to infect makes it a sobering…
A Little Sunshine, Breadcrumbs, Global Security News, Internet of Things (IoT), Ne'er-Do-Well News
Who Benefited from the Aisuru and Kimwolf Botnets?
Our first story of 2026 revealed how a destructive new botnet called Kimwolf has infected more than two million devices by mass-compromising a vast number of unofficial Android TV streaming boxes. Today, we’ll dig through digital clues left behind by the hackers, network operators and services that appear to have benefitted from Kimwolf’s spread. On…
A Little Sunshine, Amazon, Asia Pacific, Global Security News, Internet of Things (IoT), Web Fraud 2.0
Is Your Android TV Streaming Box Part of a Botnet?
On the surface, the Superbox media streaming devices for sale at retailers like BestBuy and Walmart may seem like a steal: They offer unlimited access to more than 2,200 pay-per-view and streaming services like Netflix, ESPN and Hulu, all for a one-time fee of around $400. But security experts warn these TV boxes require intrusive…
A Little Sunshine, Asia Pacific, Global Security News, Internet of Things (IoT), Latest Warnings, The Coming Storm
Drilling Down on Uncle Sam’s Proposed TP-Link Ban
The U.S. government is reportedly preparing to ban the sale of wireless routers and other networking gear from TP-Link Systems, a tech company that currently enjoys an estimated 50% market share among home users and small businesses. Experts say while the proposed ban may have more to do with TP-Link’s ties to China than any…
A Little Sunshine, Global Security News, Internet of Things (IoT), North America, Web Fraud 2.0
Cloudflare Scrubs Aisuru Botnet from Top Domains List
For the past week, domains associated with the massive Aisuru botnet have repeatedly usurped Amazon, Apple, Google and Microsoft in Cloudflare’s public ranking of the most frequently requested websites. Cloudflare responded by redacting Aisuru domain names from their top websites list. The chief executive at Cloudflare says Aisuru’s overlords are using the botnet to boost…
A Little Sunshine, Global Security News, Internet of Things (IoT), North America, The Coming Storm, Web Fraud 2.0
Aisuru Botnet Shifts from DDoS to Residential Proxies
Aisuru, the botnet responsible for a series of record-smashing distributed denial-of-service (DDoS) attacks this year, recently was overhauled to support a more low-key, lucrative and sustainable business: Renting hundreds of thousands of infected Internet of Things (IoT) devices to proxy services that help cybercriminals anonymize their traffic. Experts says a glut of proxies from Aisuru…
Global Security News, Internet of Things (IoT), Latest Warnings, The Coming Storm, Web Fraud 2.0
DDoS Botnet Aisuru Blankets US ISPs in Record DDoS
The world’s largest and most disruptive botnet is now drawing a majority of its firepower from compromised Internet-of-Things (IoT) devices hosted on U.S. Internet providers like AT&T, Comcast and Verizon, new evidence suggests. Experts say the heavy concentration of infected devices at U.S. providers is complicating efforts to limit collateral damage from the botnet’s attacks,…
A Little Sunshine, Breadcrumbs, Global Security News, Internet of Things (IoT), Latest Warnings
DSLRoot, Proxies, and the Threat of ‘Legal Botnets’
The cybersecurity community on Reddit responded in disbelief this month when a self-described Air National Guard member with top secret security clearance began questioning the arrangement they’d made with company called DSLRoot, which was paying $250 a month to plug a pair of laptops into the Redditor’s high-speed Internet connection in the United States. This…
A Little Sunshine, Breadcrumbs, CloudFlare, DDoS, fbi, Forky, Global Security News, Internet of Things (IoT), Jigsaw, Kaike Southier Leite, Mirai, Ne'er-Do-Well News, Project Shield, QiAnXin XLab, stresser, The Coming Storm, U.S. Department of Justice, yfork
KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS
KrebsOnSecurity last week was hit by a near record distributed denial-of-service (DDoS) attack that clocked in at more than 6.3 terabits of data per second (a terabit is one trillion bits of data). The brief attack appears to have been a test run for a massive new Internet of Things (IoT) botnet capable of launching…
Analytics & Intelligence, Asia Pacific, china, Congress, Cyberlaw, Cybersecurity, Editorial Calendar, Featured, flawed routers, Global Security News, Governance, Risk & Compliance, House of Representatives, Humor, Incident Response, Industry Spotlight, internet of things, Internet of Things (IoT), Internet of Things cyber security, internetof things, internetofthings, internte-of-things, IoT, IoT & ICS Security, Jeff Barney, John Moolenaar, Most Read This Week, Network Security, News, OpenWrt, Peoples Republic of China, Popular Post, Raja Krishnamoorthi, Rob Joyce, router compromise, router exploit, router firmware security flaw, router hacking, router hijacking, router security, router vulnerabilities, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, SOHO, SOHO and IoT device vulnerabilities, Spotlight, Threat Intelligence, Threats & Breaches, TP-LINK, U.S. Commerce Department, US Congress, vulnerabilities
‘Ban These Chinese Routers NOW,’ Cries House Committee
Sino stoppage scheme: TP-Link in crosshairs, along with other brands. The post ‘Ban These Chinese Routers NOW,’ Cries House Committee appeared first on Security Boulevard.
CloudFlare, Cybersecurity, DDoS, Global Security News, Internet of Things (IoT), Mirai, Qualys, Research, Threats
CloudFlare detected (and blocked) the biggest DDoS attack on record
Web infrastructure and security company Cloudflare says it detected the biggest Distributed Denial-of-Service (DDoS) attack ever recorded, a 5.6 terabits per second (Tbps) attack directed at an internet service provider (ISP) in Eastern Asia. Despite the staggering volume of the attack, Cloudflare successfully managed and mitigated it without human intervention. The company said in research…
Analytics & Intelligence, Cloud Security, Cyberlaw, Cybersecurity, Data Privacy, DevOps, Endpoint, Featured, Fiat, Fuel Rewards, GasBuddy, Global Security News, Governance, Risk & Compliance, Humor, Incident Response, Industry Spotlight, insurance, Insurance Companies, insurance company, internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, iOS spyware, IoT, IoT & ICS Security, Jeep, Lexus, Life360, malware, Maserati, Mazda, Mobile Security, Most Read This Week, mozilla, Mozilla Foundation, New Cars, News, Popular Post, privacy, Privacy4Cars, RAM, Routely, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Spyware, Stellantis, Texas Data Privacy and Security Act, Threat Intelligence, Threats & Breaches, Toyota, vehicle, vehicle cybersecurity, vehicle OTAs
Allstate Violates Drivers’ Privacy, Texas AG Alleges
Don’t Mess With Texas Privacy: “We will hold all these companies accountable,” rants state attorney general Ken Paxton (pictured). The post Allstate Violates Drivers’ Privacy, Texas AG Alleges appeared first on Security Boulevard.
Application Security, Cyberlaw, Cybersecurity, Data Privacy, Data Security, DevOps, Endpoint, Family Tree DNA, Featured, Global Security News, Governance, Risk & Compliance, Hackable Medical Devices, Humor, Incident Response, industrial internet of things, Industry Spotlight, internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, internetof things, internetofthings, internte-of-things, Intranet of Things, IoT, IoT & ICS Security, medical, medical data, medical device, medical device security, Medical Devices, Medical devices cyber security, medical equipment, Most Read This Week, Network Security, News, Popular Post, Ransomware, Ransomware of Things, SB Blogwatch, secure boot, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Threats & Breaches, vulnerabilities
Insecure Medical Devices — Illumina DNA Sequencer Illuminates Risks
IEI-IEI, Oh: Running an obsolete OS, on obsolete hardware, configured with obsolete settings. The post Insecure Medical Devices — Illumina DNA Sequencer Illuminates Risks appeared first on Security Boulevard.
Asia Pacific, china, fbi, Federal Bureau of Investigation (FBI), Financial, Flax Typhoon, Geopolitics, Global Security News, Integrity Technology Group, internet of things, Internet of Things (IoT), State Department, Technology, Treasury Department
U.S. sanctions take aim at Chinese company said to aid hackers’ massive botnet
The U.S. government on Friday sanctioned a Chinese company that Western nations had connected to a Beijing-sponsored hacking group’s botnet, which had compromised hundreds of thousands of devices before a joint takedown operation last year. Flax Typhoon hackers made use of infrastructure at Integrity Technology Group to exploit victims, according to the Treasury Department’s Office…
Exploits, Global Security News, Internet of Things (IoT), routers, threat detection, Uncategorized, vulnerabilities
Thousands of industrial routers vulnerable to command injection flaw
Thousands of industrial routers from a Chinese telecommunications equipment manufacturer are vulnerable to a post-authentication vulnerability, with indications it is already being exploited in the wild to infect devices with Mirai malware. On Dec. 27, VulnCheck detailed the vulnerability, tracked as CVE-2024-12856, wherein an attacker can leverage default credentials in Four-Faith F3x24 and F3x36 routers…