New Aquabot Botnet Exploits Critical Mitel Phone Vulnerability for DDoS Attacks
A new Mirai botnet variant called Aquabot is targeting Mitel SIP phones through a command injection vulnerability to build a DDoS attack network. The malware introduces novel reporting capabilities and is being marketed as a DDoS-for-hire service on Telegram despite its malicious intent.
Critical Security Flaw Exposes 4.2 Million Internet Devices to Tunneling Protocol Attacks
A major vulnerability in tunneling protocols has left millions of VPNs, routers, and network devices exposed to potential cyberattacks worldwide. Security researchers discovered multiple flaws that could enable anonymous attacks and unauthorized network access across China, France, Japan, US, and Brazil.
Critical Zero-Day Router Botnet 'Gayfemboy' Launches Global DDoS Attacks
A dangerous new botnet dubbed 'Gayfemboy' is actively exploiting zero-day vulnerabilities in industrial routers worldwide, creating a massive DDoS attack network. With over 15,000 daily infected nodes targeting victims across multiple countries, experts urge organizations to implement critical security measures.
DDoS Attack Disrupts Japan Airlines Operations During Holiday Rush
Japan Airlines faced significant disruptions after a DDoS cyberattack temporarily halted ticket sales and delayed multiple domestic flights during peak holiday travel. The incident, which affected internal systems but did not compromise customer data, highlights growing cybersecurity concerns in Japan's critical infrastructure.
African Organizations Face Surging DDoS Attacks Amid Digital Growth
Recent data shows a 30% increase in DDoS attacks across Middle East and Africa, with Morocco, Egypt, and Tunisia being primary targets. The surge coincides with rapid digital transformation across the continent, creating new cybersecurity challenges for organizations.
Critical Cloud Platform Vulnerabilities Put 50,000 Ruijie Network Devices at Risk
Security researchers discovered multiple critical flaws in Ruijie Networks' cloud platform that could enable remote control of network devices. The vulnerabilities, including a novel 'Open Sesame' attack method, exposed severe weaknesses in device authentication and command execution capabilities.
Healthcare Data Breach at Radin Health Exposes 80,000 Patient Records
A significant cybersecurity incident at Wyoming-based Radin Health has potentially compromised sensitive medical data of 80,000 patients across multiple healthcare facilities. The reported attack, involving ransomware and DDoS methods, has disabled critical appointment systems and raised concerns about cloud-based medical data security.
Pro-Russian Hacktivists Target European Infrastructure in Massive Cyber Campaign
Orange Cyberdefense reveals a pro-Russian hacktivist group has launched over 6,600 attacks on European targets since March 2022, primarily focusing on critical infrastructure and financial institutions. The group's activities coincide with geopolitical events while deliberately avoiding U.S. territories, even as North America faces rising cyber extortion threats.
Inside the Secret Life of Brian Krebs: The Journalist Who Hunts Cybercriminals
From an undisclosed location, cybersecurity journalist Brian Krebs fearlessly investigates and exposes dangerous cybercriminals, despite constant threats and attacks. His deep technical expertise and vast network of sources have helped uncover major data breaches and cybercrime operations.
Massive DDoS Campaign Exploits Millions of IoT Devices Using Basic Attack Tools
A newly discovered DDoS operation dubbed 'Matrix' is targeting millions of IoT devices and enterprise servers through weak credentials and misconfigurations. The campaign highlights how readily available tools can be weaponized for large-scale cyber attacks, potentially compromising up to 35 million devices worldwide.