The Hacker News

Kimwolf Android Botnet Infects Over 2 Million Devices via Exposed ADB and Proxy Networks

Kimwolf is an Android botnet that infected 2M+ devices via exposed ADB, using proxy networks to run DDoS attacks and sell ...
Security Boulevard

RondoDox Botnet Operators Set React2Shell Flaw in Their Sights

The operators behind the highly adaptable RondoDox botnet campaign that kicked off in late March have proven to be ready to embrace the latest attack trends. Most recently, in December they began ...
Dark Reading

RondoDox Botnet Expands Scope With React2Shell Exploitation

Recent attacks are targeting Next.js servers and pose a significant threat of cryptomining and other malicious activity to ...
HotHardware

Microsoft Uncovers Windows And Linux Botnet Used To DDoS Minecraft Servers

Earlier this week, Microsoft Defender for IoT researchers discovered malicious downloads that affect Windows and Linux devices. These downloads, among other propagation methods, ensnare local devices ...
The Hacker News

RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers

RondoDox botnet exploits the React2Shell vulnerability in Next.js, with over 90,000 exposed systems used to deploy miners and ...
SecurityWeek

RondoDox Botnet Exploiting React2Shell Vulnerability

December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.

RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...
Dark Reading

Trend Micro Nukes Zeus Botnet Server

Antivirus security company Trend Micro on Wednesday said that it eliminated -- or "sinkholed" -- a Zeus botnet command-and-control (C&C) server. "In February 2011, we successfully collaborated with ...
Bleeping Computer

New JenX IoT DDoS Botnet Offered Part of Gaming Server Rental Scheme

The operators of a gaming server rental business are believed to have built an IoT DDoS botnet, which they are now offering as part of the server rental scheme. The prime and pretty obvious clue that ...
ZDNet

Met Police: UK botnet command server taken out

An Eastern European command-and-control server for a botnet that targets UK banking customers and businesses has been taken down, according to a senior Metropolitan Police source. The server, which ...
ZDNet

Two million stolen Facebook, Twitter, Yahoo, ADP passwords found on Pony Botnet server

Since the source code for the Pony Botnet Controller was leaked, Trustwave's SpiderLabs has been tracking the beast with much fascination. Interest turned to stunned surprise when the researchers ...
PC World

Botnet malware discovered on Healthcare.gov server

Thanks to a poor initial launch followed a few months later by the Heartbleed scare, Healthcare.gov has had its share of security problems. Now, we can add one more security snafu to the list. In ...