toad.social

Schneier on Security RSSGoogle Sues the Badbox Botnet OperatorsIt will be interesting to watch what will come of this private lawsuit: Google on Thursday announced filing a lawsuit again... <a href="https://www.schneier.com/blog/archives/2025/07/google-sues-the-badbox-botnet-operators.html" rel="nofollow noopener" translate="no" target="_blank">https://www.schneier.com/blog/archives/2025/07/google-sues-the-badbox-botnet-operators.html</a> <a href="https://burn.capital/tags/Uncategorized" class="mention hashtag" rel="nofollow noopener" target="_blank">#Uncategorized</a> <a href="https://burn.capital/tags/backdoors" class="mention hashtag" rel="nofollow noopener" target="_blank">#backdoors</a> <a href="https://burn.capital/tags/botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnets</a> <a href="https://burn.capital/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://burn.capital/tags/courts" class="mention hashtag" rel="nofollow noopener" target="_blank">#courts</a> <a href="https://burn.capital/tags/Google" class="mention hashtag" rel="nofollow noopener" target="_blank">#Google</a>

securityaffairsDisrupting the operations of cryptocurrency mining <a href="https://infosec.exchange/tags/botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnets</a> <a href="https://securityaffairs.com/179310/malware/disrupting-operations-of-cryptocurrency-mining-botnets.html" rel="nofollow noopener" translate="no" target="_blank">https://securityaffairs.com/179310/malware/disrupting-operations-of-cryptocurrency-mining-botnets.html</a> <a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener" target="_blank">#securityaffairs</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a>

PrivacyDigestFeds charge 16 <a href="https://mas.to/tags/Russians" class="mention hashtag" rel="nofollow noopener" target="_blank">#Russians</a> allegedly tied to <a href="https://mas.to/tags/botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnets</a> used in <a href="https://mas.to/tags/cyberattacks" class="mention hashtag" rel="nofollow noopener" target="_blank">#cyberattacks</a> and <a href="https://mas.to/tags/spying" class="mention hashtag" rel="nofollow noopener" target="_blank">#spying</a> <a href="https://mas.to/tags/russia" class="mention hashtag" rel="nofollow noopener" target="_blank">#russia</a> <a href="https://mas.to/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a><a href="https://arstechnica.com/security/2025/05/feds-charge-16-russians-allegedly-tied-to-botnets-used-in-cyberattacks-and-spying/" rel="nofollow noopener" translate="no" target="_blank">https://arstechnica.com/security/2025/05/feds-charge-16-russians-allegedly-tied-to-botnets-used-in-cyberattacks-and-spying/</a>

PrivacyDigestFeds Charge 16 <a href="https://mas.to/tags/Russians" class="mention hashtag" rel="nofollow noopener" target="_blank">#Russians</a> Allegedly Tied to <a href="https://mas.to/tags/Botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#Botnets</a> Used in <a href="https://mas.to/tags/Ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ransomware</a> , <a href="https://mas.to/tags/Cyberattacks" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cyberattacks</a> , and <a href="https://mas.to/tags/Spying" class="mention hashtag" rel="nofollow noopener" target="_blank">#Spying</a> A new US <a href="https://mas.to/tags/indictment" class="mention hashtag" rel="nofollow noopener" target="_blank">#indictment</a> against a group of Russian nationals offers a clear example of how, authorities say, a single <a href="https://mas.to/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> operation can enable both criminal and state-sponsored <a href="https://mas.to/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a>. <a href="https://mas.to/tags/russia" class="mention hashtag" rel="nofollow noopener" target="_blank">#russia</a><a href="https://www.wired.com/story/us-charges-16-russians-danabot-malware/" rel="nofollow noopener" translate="no" target="_blank">https://www.wired.com/story/us-charges-16-russians-danabot-malware/</a>

Manuel 'HonkHase' AtugFeds Charge 16 Russians Allegedly Tied to <a href="https://chaos.social/tags/Botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#Botnets</a> Used in <a href="https://chaos.social/tags/Ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ransomware</a>, Cyberattacks, and <a href="https://chaos.social/tags/Spying" class="mention hashtag" rel="nofollow noopener" target="_blank">#Spying</a>"A new US indictment against a group of Russian nationals offers a clear example of how, authorities say, a single <a href="https://chaos.social/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> operation can enable both criminal and state-sponsored hacking." <a href="https://www.wired.com/story/us-charges-16-russians-danabot-malware/" rel="nofollow noopener" translate="no" target="_blank">https://www.wired.com/story/us-charges-16-russians-danabot-malware/</a>

ResearchBuzz: FirehoseKrebs on Security: KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS. “KrebsOnSecurity last week was hit by a near record distributed denial-of-service (DDoS) attack that clocked in at more than 6.3 terabits of data per second (a terabit is one trillion bits of data). The brief attack appears to have been a test run for a massive new Internet of Things (IoT) botnet capable of launching […]<a href="https://rbfirehose.com/2025/05/22/krebs-on-security-krebsonsecurity-hit-with-near-record-6-3-tbps-ddos/" class="" rel="nofollow noopener" target="_blank">https://rbfirehose.com/2025/05/22/krebs-on-security-krebsonsecurity-hit-with-near-record-6-3-tbps-ddos/</a>

ResearchBuzz: FirehoseThe Register: Feds disrupt proxy-for-hire botnet, indict four alleged net miscreants. “Earlier this week, the FBI urged folks to bin aging routers vulnerable to hijacking, citing ongoing attacks linked to TheMoon malware. In a related move, the US Department of Justice unsealed indictments against four foreign nationals accused of running a long-running proxy-for-hire network that exploited […]<a href="https://rbfirehose.com/2025/05/14/the-register-feds-disrupt-proxy-for-hire-botnet-indict-four-alleged-net-miscreants/" class="" rel="nofollow noopener" target="_blank">https://rbfirehose.com/2025/05/14/the-register-feds-disrupt-proxy-for-hire-botnet-indict-four-alleged-net-miscreants/</a>

LMG SecurityThe FBI has issued an alert about cybercriminals hijacking outdated routers to power massive proxy-for-hire networks—masking malware, fraud, and credential theft right under your nose.Watch the full Cyberside Chats episode to hear <a href="https://infosec.exchange/@sherridavidoff" class="u-url mention" rel="nofollow noopener" target="_blank">@sherridavidoff</a> and <a href="https://infosec.exchange/@MDurrin" class="u-url mention" rel="nofollow noopener" target="_blank">@MDurrin</a> 's insights on:🔹 The FBI’s May 2025 alert 🔹 TheMoon malware and the Faceless proxy service 🔹 What these botnets mean for your enterprise 🔹 What you need to do now to stay protected🎥 Watch the video: <a href="https://youtu.be/x_40BlvWsHk" rel="nofollow noopener" translate="no" target="_blank">https://youtu.be/x_40BlvWsHk</a> 🎧 Listen to the podcast: <a href="https://www.chatcyberside.com/e/outdated-routers-a-hidden-threat-in-your-neighborhood/?token=b0b648ff9ddf79f7cb1099945c74f7f0" rel="nofollow noopener" translate="no" target="_blank">https://www.chatcyberside.com/e/outdated-routers-a-hidden-threat-in-your-neighborhood/?token=b0b648ff9ddf79f7cb1099945c74f7f0</a><a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/RouterSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#RouterSecurity</a> <a href="https://infosec.exchange/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#ThreatIntel</a> <a href="https://infosec.exchange/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Malware</a> <a href="https://infosec.exchange/tags/CISO" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISO</a> <a href="https://infosec.exchange/tags/CybersideChats" class="mention hashtag" rel="nofollow noopener" target="_blank">#CybersideChats</a> <a href="https://infosec.exchange/tags/ProxyAbuse" class="mention hashtag" rel="nofollow noopener" target="_blank">#ProxyAbuse</a> <a href="https://infosec.exchange/tags/TheMoonMalware" class="mention hashtag" rel="nofollow noopener" target="_blank">#TheMoonMalware</a> <a href="https://infosec.exchange/tags/Botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#Botnets</a> <a href="https://infosec.exchange/tags/NetworkSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#NetworkSecurity</a> <a href="https://infosec.exchange/tags/CISO" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISO</a> <a href="https://infosec.exchange/tags/Cyberaware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cyberaware</a> <a href="https://infosec.exchange/tags/Tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#Tech</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/IT" class="mention hashtag" rel="nofollow noopener" target="_blank">#IT</a> <a href="https://infosec.exchange/tags/CIO" class="mention hashtag" rel="nofollow noopener" target="_blank">#CIO</a> <a href="https://infosec.exchange/tags/SMB" class="mention hashtag" rel="nofollow noopener" target="_blank">#SMB</a> <a href="https://infosec.exchange/tags/Cyber" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cyber</a>

Schneier on Security RSSAI Data PoisoningCloudflare has a new feature—available to free users as well—that uses AI to generate random pages to feed to AI... <a href="https://www.schneier.com/blog/archives/2025/03/ai-data-poisoning.html" rel="nofollow noopener" translate="no" target="_blank">https://www.schneier.com/blog/archives/2025/03/ai-data-poisoning.html</a> <a href="https://burn.capital/tags/Uncategorized" class="mention hashtag" rel="nofollow noopener" target="_blank">#Uncategorized</a> <a href="https://burn.capital/tags/spoofing" class="mention hashtag" rel="nofollow noopener" target="_blank">#spoofing</a> <a href="https://burn.capital/tags/botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnets</a> <a href="https://burn.capital/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AI</a>

The Spamhaus ProjectWe strongly recommend against providing services to entities whose AS or IP networks are listed in Spamhaus (ASN-)DROP - learn more here 👉 <a href="https://www.spamhaus.org/blocklists/do-not-route-or-peer/" rel="nofollow noopener" translate="no" target="_blank">https://www.spamhaus.org/blocklists/do-not-route-or-peer/</a><a href="https://infosec.exchange/tags/BulletproofHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#BulletproofHosting</a> <a href="https://infosec.exchange/tags/DROP" class="mention hashtag" rel="nofollow noopener" target="_blank">#DROP</a> <a href="https://infosec.exchange/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#ThreatIntel</a> <a href="https://infosec.exchange/tags/Botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#Botnets</a> <a href="https://infosec.exchange/tags/Phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#Phishing</a>

Schneier on Security RSSTP-Link Router BotnetThere is a new botnet that is infecting TP-Link routers: The botnet can lead to comma... <a href="https://www.schneier.com/blog/archives/2025/03/tp-link-router-botnet.html" rel="nofollow noopener" translate="no" target="_blank">https://www.schneier.com/blog/archives/2025/03/tp-link-router-botnet.html</a> <a href="https://burn.capital/tags/Uncategorized" class="mention hashtag" rel="nofollow noopener" target="_blank">#Uncategorized</a> <a href="https://burn.capital/tags/botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnets</a> <a href="https://burn.capital/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a>

ResearchBuzz: FirehoseArs Technica: Massive botnet that appeared overnight is delivering record-size DDoSes. “A newly discovered network botnet comprising an estimated 30,000 webcams and video recorders—with the largest concentration in the US—has been delivering what is likely to be the biggest denial-of-service attack ever seen, a security researcher inside Nokia said.”<a href="https://rbfirehose.com/2025/03/08/ars-technica-massive-botnet-that-appeared-overnight-is-delivering-record-size-ddoses/" class="" rel="nofollow noopener" target="_blank">https://rbfirehose.com/2025/03/08/ars-technica-massive-botnet-that-appeared-overnight-is-delivering-record-size-ddoses/</a>

Angus McIntyreThe Internet of Shit is on the attack again, with a suspected Mirai-derivative botnet composed largely of compromised security cameras delivering a massive volumetric DDoS. Sweet.<a href="https://mastodon.social/tags/BotNets" class="mention hashtag" rel="nofollow noopener" target="_blank">#BotNets</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://mastodon.social/tags/IOT" class="mention hashtag" rel="nofollow noopener" target="_blank">#IOT</a> <a href="https://mastodon.social/@arstechnica/114115698112535544" rel="nofollow noopener" translate="no" target="_blank">https://mastodon.social/@arstechnica/114115698112535544</a>

IT NewsMassive botnet that appeared overnight is delivering record-size DDoSes - A newly discovered network botnet comprising an estimated 30,000 webcams a... - <a href="https://arstechnica.com/security/2025/03/massive-botnet-that-appeared-overnight-is-delivering-record-size-ddoses/" rel="nofollow noopener" translate="no" target="_blank">https://arstechnica.com/security/2025/03/massive-botnet-that-appeared-overnight-is-delivering-record-size-ddoses/</a> <a href="https://schleuss.online/tags/distributeddenialofserviceattacks" class="mention hashtag" rel="nofollow noopener" target="_blank">#distributeddenialofserviceattacks</a> <a href="https://schleuss.online/tags/internetofthings" class="mention hashtag" rel="nofollow noopener" target="_blank">#internetofthings</a> <a href="https://schleuss.online/tags/uncategorized" class="mention hashtag" rel="nofollow noopener" target="_blank">#uncategorized</a> <a href="https://schleuss.online/tags/ddosattacks" class="mention hashtag" rel="nofollow noopener" target="_blank">#ddosattacks</a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://schleuss.online/tags/botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnets</a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener" target="_blank">#biz</a>&it

Anonymous 🐈️🐾☕🍵🏴🇵🇸 :af:Two <a href="https://kolektiva.social/tags/botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnets</a> tracked as ‘ <a href="https://kolektiva.social/tags/Ficora" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ficora</a>’ and ‘ <a href="https://kolektiva.social/tags/Capsaicin" class="mention hashtag" rel="nofollow noopener" target="_blank">#Capsaicin</a>’ have recorded increased activity in targeting D-Link routers that have reached end of life or are running outdated firmware versions. <a href="https://kolektiva.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://kolektiva.social/tags/DLinkrouters" class="mention hashtag" rel="nofollow noopener" target="_blank">#DLinkrouters</a> <a href="https://www.bleepingcomputer.com/news/security/malware-botnets-exploit-outdated-d-link-routers-in-recent-attacks/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/malware-botnets-exploit-outdated-d-link-routers-in-recent-attacks/</a>

david poertnerHabeck is a fool for joining former <a href="https://social.cologne/tags/twitter" class="mention hashtag" rel="nofollow noopener" target="_blank">#twitter</a> again. All still using twitter are enabling <a href="https://social.cologne/tags/EvilElon" class="mention hashtag" rel="nofollow noopener" target="_blank">#EvilElon</a>, his algorithms favoring his and other <a href="https://social.cologne/tags/rightwing" class="mention hashtag" rel="nofollow noopener" target="_blank">#rightwing</a> tweets and Russian <a href="https://social.cologne/tags/botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnets</a>. There is no political discussion on twitter, but disinformation and propaganda and every serious politician is just legitimizing the <a href="https://social.cologne/tags/populists" class="mention hashtag" rel="nofollow noopener" target="_blank">#populists</a>. From <a href="https://social.cologne/tags/Musk" class="mention hashtag" rel="nofollow noopener" target="_blank">#Musk</a> there is nothing else to be expected, he is a <a href="https://social.cologne/tags/bully" class="mention hashtag" rel="nofollow noopener" target="_blank">#bully</a>. <a href="https://norden.social/@hart/113460718424232580" rel="nofollow noopener" translate="no" target="_blank">https://norden.social/@hart/113460718424232580</a>

Schneier on Security RSSIoT Devices in Password-Spraying BotnetMicrosoft is warning Azure cloud users that a Chinese controlled botnet is engaging in “highly evas... <a href="https://www.schneier.com/blog/archives/2024/11/iot-devices-in-password-spraying-botnet.html" rel="nofollow noopener" translate="no" target="_blank">https://www.schneier.com/blog/archives/2024/11/iot-devices-in-password-spraying-botnet.html</a> <a href="https://burn.capital/tags/InternetofThings" class="mention hashtag" rel="nofollow noopener" target="_blank">#InternetofThings</a> <a href="https://burn.capital/tags/Uncategorized" class="mention hashtag" rel="nofollow noopener" target="_blank">#Uncategorized</a> <a href="https://burn.capital/tags/passwords" class="mention hashtag" rel="nofollow noopener" target="_blank">#passwords</a> <a href="https://burn.capital/tags/botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnets</a> <a href="https://burn.capital/tags/China" class="mention hashtag" rel="nofollow noopener" target="_blank">#China</a>

IT NewsThousands of hacked TP-Link routers used in years-long account takeover attacks - Hackers working on behalf of the Chinese government are using a botnet of ... - <a href="https://arstechnica.com/information-technology/2024/11/microsoft-warns-of-8000-strong-botnet-used-in-password-spraying-attacks/" rel="nofollow noopener" translate="no" target="_blank">https://arstechnica.com/information-technology/2024/11/microsoft-warns-of-8000-strong-botnet-used-in-password-spraying-attacks/</a> <a href="https://schleuss.online/tags/passwordspraying" class="mention hashtag" rel="nofollow noopener" target="_blank">#passwordspraying</a> <a href="https://schleuss.online/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#microsoft</a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://schleuss.online/tags/botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnets</a> <a href="https://schleuss.online/tags/tp" class="mention hashtag" rel="nofollow noopener" target="_blank">#tp</a>-link <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener" target="_blank">#biz</a>&it

Peter N. M. HansteenMore data points - today's is Oct 6 02:03:53 skapet sshd-session[76897]: Failed password for invalid user Can't open ikk from 2a02:4780:10:42bf::1 port 43964 ssh2More likely than not a variant of spamto database gone awol like back in the day <a href="https://nxdomain.no/~peter/so_somebody_is_throwing_html_at_your_sshd.html" rel="nofollow noopener" translate="no" target="_blank">https://nxdomain.no/~peter/so_somebody_is_throwing_html_at_your_sshd.html</a> (prettified, tracked <a href="https://bsdly.blogspot.com/2016/12/so-somebody-is-throwing-html-at-your.html" rel="nofollow noopener" translate="no" target="_blank">https://bsdly.blogspot.com/2016/12/so-somebody-is-throwing-html-at-your.html</a>) but still hilarious <a href="https://mastodon.social/tags/sshgropers" class="mention hashtag" rel="nofollow noopener" target="_blank">#sshgropers</a> <a href="https://mastodon.social/tags/passwordgroping" class="mention hashtag" rel="nofollow noopener" target="_blank">#passwordgroping</a> <a href="https://mastodon.social/tags/bruteforce" class="mention hashtag" rel="nofollow noopener" target="_blank">#bruteforce</a> <a href="https://mastodon.social/tags/shitheadery" class="mention hashtag" rel="nofollow noopener" target="_blank">#shitheadery</a> <a href="https://mastodon.social/tags/botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnets</a> <a href="https://mastodon.social/tags/sillybuggers" class="mention hashtag" rel="nofollow noopener" target="_blank">#sillybuggers</a> <a href="https://mastodon.social/tags/cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybercrime</a>

Peter N. M. HansteenAnother data point in the "you thought you had seen it all, but no siree" set - Oct 4 13:34:04 skapet sshd-session[38440]: Failed password for invalid user Can't open ica from 2001:df7:3c00:800a::446:34dc port 54770 ssh2(and from several other locations)<a href="https://mastodon.social/tags/sshgropers" class="mention hashtag" rel="nofollow noopener" target="_blank">#sshgropers</a> <a href="https://mastodon.social/tags/passwordgroping" class="mention hashtag" rel="nofollow noopener" target="_blank">#passwordgroping</a> <a href="https://mastodon.social/tags/bruteforce" class="mention hashtag" rel="nofollow noopener" target="_blank">#bruteforce</a> <a href="https://mastodon.social/tags/shitheadery" class="mention hashtag" rel="nofollow noopener" target="_blank">#shitheadery</a> <a href="https://mastodon.social/tags/botnets" class="mention hashtag" rel="nofollow noopener" target="_blank">#botnets</a> <a href="https://mastodon.social/tags/sillybuggers" class="mention hashtag" rel="nofollow noopener" target="_blank">#sillybuggers</a>

Recent searches

Search options

Administered by:

Server stats:

#botnets