Tag: Mirai botnet
-
Under Active Fire: CISA Warns of New Exploits in Samsung, SimpleHelp, and D-Link Hardware
The United States Cybersecurity and Infrastructure Security Agency (CISA) has once again augmented its repository of vulnerabilities identified in active, real-world incursions. The latest revision incorporates four distinct flaws within products from Samsung, SimpleHelp, and D-Link. These vulnerabilities represent a heightened threat, as they offer adversaries not merely a theoretical vector for exploitation, but a…
-
Ancient D-Link Routers Hijacked by New “Tuxnokill” Mirai Botnet
Routers that have long been decommissioned from official support have suddenly become the epicenter of a resurgent wave of cyber incursions. Adversaries have begun aggressively exploiting a legacy vulnerability to surreptitiously conscript domestic hardware into a sprawling botnet. The flaw within the D-Link DIR-823X routers, designated as CVE-2025-29635 (carrying a CVSS score of 8.8), facilitates…
-
New Mirai-Like Botnet ‘ShadowV2’ Conducts Trial Run During AWS Outage
During AWS’s major outage in October, Fortinet specialists uncovered a new botnet, ShadowV2, built on Mirai-derived malware and targeting IoT devices worldwide. According to FortiGuard Labs, the campaign appeared to be a “trial run” ahead of potentially larger attacks, yet even this single-day episode was enough to demonstrate just how vulnerable internet-connected devices remain across…
-
Mirai Botnet Exploits Ivanti Connect Secure Flaws
Recent vulnerabilities in Ivanti Connect Secure devices have enabled attackers to deploy the Mirai botnet, according to security researchers from Juniper. These vulnerabilities, identified as CVE-2023-46805 and CVE-2024-21887, are currently being actively exploited. The first vulnerability allows for authentication bypass, while the second enables command injection. Together, they permit attackers to execute arbitrary code and…