Diablo 4 and other Blizzard games DDoS attacks "have ended", says Blizzard

Blizzard has confirmed that the DDoS attacks that have plagued its games for most of the weekend are now over.
25 June 2023

New Condi malware builds DDoS botnet out of TP-Link AX21 routers

A new DDoS-as-a-Service botnet called "Condi" emerged in May 2023, exploiting a vulnerability in TP-Link Archer AX21 (AX1800) Wi-Fi routers to build an army of bots to conduct attacks. [...]
20 June 2023

Microsoft Azure and Outlook outages were caused by DDoS attacks

HTTP(S) flood attacks in the millions, cache bypass, and slowloris were all responsible for taking down Microsoft’s services.
19 June 2023

Microsoft confirms Azure, Outlook outages caused by DDoS attacks

Microsoft has confirmed that recent outages to Azure, Outlook, and OneDrive web portals resulted from Layer 7 DDoS attacks against the company's services. [...]
18 June 2023

Police cracks down on DDoS-for-hire service active since 2013

Polish police officers part of the country's Central Cybercrime Bureau detained two suspects believed to have been involved in the operation of a long-running DDoS-for-hire service (aka booter or stresser) active since at least 2013. [...]
16 June 2023

Microsoft Azure outage caused by "huge spike", that could have been a DDoS attack

A threat actor known as Anonymous Sudan assumed responsibility for the attack.
13 June 2023

Swiss government warns of ongoing DDoS attacks, data leak

The Swiss government has disclosed that a recent ransomware attack on an IT supplier might have impacted its data, while today, it warns that it is now targeted in DDoS attacks. [...]
12 June 2023

DOS Attacks Dominate, but System Intrusions Cause Most Pain

DOS Attacks Dominate, but System Intrusions Cause Most Pain In the latest Verizon "Data Breach Investigations Report," denial-of-service attacks are the most common type of security incident, but when it comes to breaches, nearly four-in-ten attackers compromise systems.
09 June 2023

Microsoft’s Azure portal down following new claims of DDoS attacks

The Microsoft Azure Portal is down on the web as a threat actor known as Anonymous Suda claims to be targeting the site with a DDoS attack. [...]
09 June 2023

Microsoft OneDrive went down after a spate of DDoS attacks

Anonymous Sudan takes responsibility, calls Microsoft "liars".
09 June 2023

Microsoft OneDrive down worldwide following claims of DDoS attacks

Microsoft is investigating an ongoing outage that is preventing OneDrive customers from accessing the cloud file hosting service worldwide, just as a threat actor known as 'Anonymous Sudan' claims to be DDoSing the service [...]
08 June 2023

Outlook.com hit by outages as hacktivists claim DDoS attacks

Outlook.com is suffering a series of outages today after being down multiple times yesterday, with hacktivists known as Anonymous Sudan claiming to perform DDoS attacks on the service. [...]
06 June 2023

Mirai Variant Opens Tenda, Zyxel Gear to RCE, DDoS

Mirai Variant Opens Tenda, Zyxel Gear to RCE, DDoS Researchers have observed several cyberattacks leveraging a botnet called IZ1H9, which exploits vulnerabilities in exposed devices and servers running on Linux.
31 May 2023

Carpet bomb DDoS attacks rise 300 percent

A new report shows that 2022 saw a 300 percent increase in 'carpet bomb' DDoS attacks compared to 2021. Carpet bomb attacks, also known as spread-spectrum or spray attacks, distribute traffic across large IP address spaces. Legacy technology, like standard victim-oriented detection and mitigation detection techniques, often fails to accurately identify these attacks, leading to incomplete mitigation or false positives. Legacy solutions can also simply be overwhelmed by the number of IP addresses involved. The DDoS Threat Intelligence Report from Corero Network Security also reveals over seven times as many Mirai-like DDoS attacks in 2022 than in 2021. These botnet… [Continue Reading]
17 May 2023

Breaking the DDoS Attack Loop With Rate Limiting

Breaking the DDoS Attack Loop With Rate Limiting This Tech Tip demonstrates how security engineers can best use rate limits to mitigate distributed denial-of-service attacks.
15 May 2023

RapperBot DDoS malware adds cryptojacking as new revenue stream

New samples of the RapperBot botnet malware have added cryptojacking capabilites to mine for cryptocurrency on compromised Intel x64 machines. [...]
10 May 2023

RapperBot Crew Drops DDoS/CryptoJacking Botnet Collab

RapperBot Crew Drops DDoS/CryptoJacking Botnet Collab Cryptomining is a logical partner for an existing IoT-focused DDoS botnet, so the RapperBot authors customized XMRig to make it happen.
10 May 2023

Critical Ruckus RCE flaw exploited by new DDoS botnet malware

A new malware botnet named 'AndoryuBot' is targeting a critical-severity flaw in the Ruckus Wireless Admin panel to infect unpatched Wi-Fi access points for use in DDoS attacks. [...]
09 May 2023

Justice Department Targets 13 Websites Linked to DDoS-for-Hire

Justice Department Targets 13 Websites Linked to DDoS-for-Hire Ten of the domains targeted today were "reincarnations" of services seized in December 2022.
09 May 2023

Feds Take Down 13 More DDoS-for-Hire Services

The U.S. Federal Bureau of Investigation (FBI) this week seized 13 domain names connected to “booter” services that let paying customers launch crippling distributed denial-of-service (DDoS) attacks. Ten of the domains are reincarnations of DDoS-for-hire services the FBI seized in December 2022, when it charged six U.S. men with computer crimes for allegedly operating booters.
09 May 2023