The Hacker News

RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers

RondoDox botnet exploits the React2Shell vulnerability in Next.js, with over 90,000 exposed systems used to deploy miners and ...

RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...
PC World

New botnet malware infects 1.6 million Android TV devices worldwide

Vo1d is a long-known botnet that infects Android TV devices, and security experts from XLab have now discovered a new variant that’s said to have infected over 1.6 million Android TV devices around ...
Morning Overview on MSN

Kimwolf DDoS botnet already grabbed 1.8M devices. What we know

Kimwolf is the latest reminder that the most dangerous botnets now grow quietly inside everyday consumer electronics.

Nearly 2 million Android devices hijacked by massive new botnet — how to see if yours are infected

On October 30th, Cloudfare data identified a strange website that briefly surpassed Google as the most popular website ...
TechRepublic

Androxgh0st Malware Botnet Steals AWS, Microsoft Credentials and More

The Androxgh0st malware botnet is used for victim identification and exploitation in targeted networks, as well as credentials collection. Read the FBI/CISA's tips for protecting against this malware ...
Dark Reading

Up-And-Coming Botnet Uses Same Malware Kit As Defunct Mariposa

A financial-fraud botnet built with the same malware kit used in the now-defunct Mariposa botnet remains active after arrests this month of two Eastern European men who allegedly ran it. Researchers ...
SecurityWeek

‘Kimwolf’ Android Botnet Ensnares 1.8 Million Devices

Consisting of over 1.8 million infected devices, the Kimwolf Android Botnet focuses on traffic proxying, but can also launch ...
Dark Reading

IoT Botnets Are Increasing Source of Malware on SP Networks

Botnets are increasingly making up more and more of the malware traffic found on service provider networks, with cybercriminals using these Internet of Things bots for a range of malicious schemes, ...
Bleeping Computer

New botnet malware exploits two zero-days to infect NVRs and routers

A new Mirai-based malware botnet named 'InfectedSlurs' has been exploiting two zero-day remote code execution (RCE) vulnerabilities to infect routers and video recorder (NVR) devices. The malware ...
Computerworld

Storm botnet spreading malware through GeoCities

Storm, the botnet-building Trojan horse, has come up with another twist to dupe users into infecting their PCs with malware, a security researcher said today. Longtime clients of the Russian Business ...
HotHardware

Alarming Vo1d Malware Botnet Infects Millions Of Android TVs: Update ASAP

Imagine you're having a good time enjoying your favorite TV show, and suddenly an adult video takes over your screen, your remote stops working and harmful content is being forced on viewers. While ...