Botnet stories

AI-driven botnets fuel eight million DDoS attacks in late 2025, as multi-vector assaults hit 30 Tbps and strain global critical services.

A newly uncovered SSHStalker botnet uses old-school IRC and legacy Linux exploits to hijack outdated corporate and cloud hosts at scale.

DigiCert warns UltraDNS DDoS attacks spiked to record levels in December 2025, driven by massive Aisuru and Kimwolf botnets.

DigiCert warns Q4 internet traffic stayed high as DDoS and app-layer attacks grew longer and more intense, eroding traditional peak seasons.

Google has dismantled IPIDEA's vast residential proxy network, which hijacked millions of consumer devices for global cyber operations.

Hydrolix launches Bot Insights to reveal hidden AI bot traffic and six-figure cost leaks, promising real-time visibility across CDNs.

Fake torrents of Leonardo DiCaprio film One Battle After Another are spreading Agent Tesla malware that hijacks Windows PCs, experts warn.

Law enforcement and cybersecurity firms have disrupted major malware networks amid rising risks from AI-driven cyberattacks and escalating supply chain breaches globally.

Threat group Detour Dog has exploited DNS to covertly infect over 30,000 websites since 2020, shifting from scam redirects to malware delivery via server-side attacks.

Akamai unveiled a tool that disrupts cryptominer botnets, slashing malicious operators' earnings by USD $38,000 through innovative bad share tactics.

Cloudflare blocked a record 7.3 Tbps DDoS attack targeting a client, marking the largest ever publicly disclosed, using its fully automated global defence system.

The US DOJ indicted Russian nationals behind DanaBot malware, linked to Russian intelligence and used for cybercrime, espionage, and attacks on Ukraine.

A newly uncovered botnet of over 130,000 compromised devices is exploiting Microsoft 365 accounts through password spraying attacks, raising security alarms.

A newly discovered botnet, consisting of over 130,000 compromised devices, is targeting Microsoft 365 accounts with password spraying attacks, linked to China-based actors.

CyberCX has warned consumers about the security dangers posed by Chinese-manufactured internet-connected devices after a compromised doorbell incident in Australia.

The return of Volt Typhoon, a state-sponsored cyber-espionage group, threatens global infrastructures, exploiting outdated devices for covert operations.

CloudSEK warns that the Androxgh0st botnet has significantly expanded its reach, now targeting critical vulnerabilities in various systems and IoT devices.

Akamai's latest report reveals financial services face escalating DDoS attacks, with politically motivated strikes and rampant brand impersonation and phishing threats.

Cado Security's latest report reveals a troubling evolution in P2Pinfect malware, now featuring ransomware and cryptomining capabilities targeting servers.

Malwarebytes has launched a free Digital Footprint Portal offering a detailed analysis of sources including the dark web.