Krebs on Security

Kimwolf Botnet Swamps Anonymity Network I2P

Kimwolf is a botnet that surfaced in late 2025 and quickly infected millions of systems, turning poorly secured IoT devices like TV streaming boxes, digital picture frames and routers into relays for ...
Bleeping Computer

RUBYCARP hackers linked to 10-year-old cryptomining botnet

A Romanian botnet group named 'RUBYCARP' is leveraging known vulnerabilities and performing brute force attacks to breach corporate networks and compromise servers for financial gain. According to a ...
Dark Reading

Mirai Botnets Exploit Flaw in Wazuh Security Platform

Two separate Mirai botnet campaigns are exploiting a critical flaw in a somewhat unlikely target. The Akamai Security Intelligence and Response Team recently observed exploitation of CVE-2025-24016, a ...
SiliconANGLE

Darktrace reveals ShadowV2 botnet exploiting Docker misconfigurations in AWS

A new report out today from Darktrace Ltd. reveals a sophisticated cybercrime campaign that blends traditional malware with cloud-native design principles, exposing how threat actors are evolving ...
Bleeping Computer

New Aquabotv3 botnet malware targets Mitel command injection flaw

A new variant of the Mirai-based botnet malware Aquabot has been observed actively exploiting CVE-2024-41710, a command injection vulnerability in Mitel SIP phones. The activity was discovered by ...
Infosecurity-magazine.com

ShadowV2 Botnet Exposes Rise of DDoS-as-a-service Platforms

A new campaign that combines traditional malware with modern DevOps tooling has been observed by cybersecurity analysts. The ShadowV2 DDoS operation, discovered by Darktrace, uses a ...
CSOonline

Mirai botnet weaponizes PoC to exploit Wazuh open-source XDR flaw

Popular for monitoring Docker containers, Wazuh is being exploited by two Mirai botnet variants — one of which aligns closely with researchers’ previously released proof-of-concept attack against the ...