The security company Synthient currently sees more than 2 million infected Kimwolf devices distributed globally but with ...

This story was originally published on Cybersecurity Dive. To receive daily news and insights, subscribe to our free daily Cybersecurity Dive newsletter. A new IoT botnet that exploits a remote code ...

The operators behind the highly adaptable RondoDox botnet campaign that kicked off in late March have proven to be ready to embrace the latest attack trends. Most recently, in December they began ...

A global Internet of Things (IoT) botnet campaign, dubbed "Ballista," has been targeting unpatched TP-Link routers since the beginning of 2025. The botnet exploits a remote code execution ...

Cato Networksは3月11日(現地時間)、「Cato CTRL: Ballista - New IoT Botnet Targeting Thousands of TP-Link Archer Routers｜Cato Networks」において、TP-Link製ルータを標的とする新しいボットネット「Ballista」を発見したと報じた。

Xlabsは1月7日(現地時間)、「Gayfemboy: A Botnet Deliver Through a Four-Faith Industrial Router 0-day Exploit.」において、ボットネット「Mirai」の亜種「Gayfemboy」が複数のルータを侵害して分散型サービス拒否攻撃(DDoS: Distributed Denial of Service ...

Fortinetは6月20日(米国時間)、「Condi DDoS Botnet Spreads via TP-Link's CVE-2023-1389｜FortiGuard Labs」において、脆弱性を持つルータを悪用して拡散している分散型サービス拒否攻撃(DDoS: Distributed Denial of Service attack)型ボットキャンペーンについて伝えた。TP-Link ...

December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.

Securelist detected attacks that exploited the vulnerability of Wi - Fi routers that Deutsche Telekom and Eircom had offered for customers. What is vulnerable isZyxelIt seems that it is a router ...