Krebs on Security

The Kimwolf Botnet is Stalking Your Local Network

The security company Synthient currently sees more than 2 million infected Kimwolf devices distributed globally but with ...
Cybernews

Hackers’ botnet is exploiting 1234 passwords to steal crypto

The GoBruteforcer botnet is exploiting weak passwords on exposed servers to hunt crypto wallets and expand a growing malware ...
Dark Reading

Multipurpose GoBruteforcer Botnet Targets 50K+ Linux Servers

Researchers detailed a souped-up version of the GoBruteforcer botnet that preys on servers with weak credentials and ...
SecurityWeek

GoBruteforcer Botnet Targeting Crypto, Blockchain Projects

GoBruteforcer botnet fueled by server deployments with weak credentials and legacy web is targeting cryptocurrency and ...
SecurityWeek

Kimwolf Android Botnet Grows Through Residential Proxy Networks

The Kimwolf botnet has ensnared over 2 million Android devices, mainly exploiting an exposed ADB service through residential ...
Morning Overview on MSN

Why your Android TV box might be secretly running a botnet

Cheap Android TV boxes have quietly become one of the most dangerous devices on the home network, not because of what you ...
Cybernews

Wavlink routers and other IoT devices hit by React2Shell attacks

RondoDox botnet exploited React2Shell to compromise IoT devices and Next.js servers over a nine-month global campaign.

RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...
Dark Reading

RondoDox Botnet Expands Scope With React2Shell Exploitation

Recent attacks are targeting Next.js servers and pose a significant threat of cryptomining and other malicious activity to ...

Why your Android TV box may secretly be a part of a botnet

Security researchers warn Android TV streaming boxes promising free channels may secretly hijack home internet connections ...