The Hacker News

⚡ Weekly Recap: Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats

This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.
Cybernews

Hackers’ botnet is exploiting 1234 passwords to steal crypto

The GoBruteforcer botnet is exploiting weak passwords on exposed servers to hunt crypto wallets and expand a growing malware network.
SiliconANGLE

New Mirai variant ‘Murdoc_Botnet’ targets AVTECH cameras and Huawei routers

Researchers at cybersecurity software provider Qualys Inc. are warning of a new Mirai botnet variant that’s being used to target vulnerabilities in AVTECH Cameras and Huawei HG523 routers. The variant ...
SiliconANGLE

Botnets leverage decade-old D-Link vulnerabilities in new attack campaigns

A new report out today from Fortinet Inc.’s FortiGuard Labs details the activities of two different botnets observed through October and November that are being spread through vulnerabilities in ...
Morning Overview on MSN

Why your Android TV box might be secretly running a botnet

Cheap Android TV boxes have quietly become one of the most dangerous devices on the home network, not because of what you watch on them but because of what they might be doing in the background.
TechRepublic

Botnet Attack Targeted Routers: A Wake-Up Call for Securing Remote Employees’ Hardware

Botnet Attack Targeted Routers: A Wake-Up Call for Securing Remote Employees’ Hardware Your email has been sent The FBI spotted this state-sponsored attack that highlights how home office setups can ...
Krebs on Security

Who Benefited from the Aisuru and Kimwolf Botnets?

Our first story of 2026 revealed how a destructive new botnet called Kimwolf has infected more than two million devices by mass-compromising a vast number of unofficial Android TV streaming boxes.
Dark Reading

400K Linux Servers Recruited by Resurrected Ebury Botnet

A Linux-based botnet is alive and well, powering cryptocurrency theft and financial scams years after the imprisonment of one the key perpetrators behind it. The Ebury botnet — which was first ...
Dark Reading

Various Botnets Pummel Year-Old TP-Link Flaw in IoT Attacks

A number of botnets are pummeling a nearly year-old command-injection vulnerability in TP-Link routers to compromise the devices for IoT-driven distributed denial of service (DDoS) attacks. There ...
Bleeping Computer

MySQL servers targeted by 'Ddostf' DDoS-as-a-Service botnet

MySQL servers are being targeted by the 'Ddostf' malware botnet to enslave them for a DDoS-as-a-Service platform whose firepower is rented to other cybercriminals. This campaign was discovered by ...
TechRepublic

Androxgh0st Malware Botnet Steals AWS, Microsoft Credentials and More

The Androxgh0st malware botnet is used for victim identification and exploitation in targeted networks, as well as credentials collection. Read the FBI/CISA's tips for protecting against this malware ...