The Register on MSN

RondoDox botnet fires 'exploit shotgun' at nearly every router and internet-connected home device

DVRs, CCTV systems, web servers … time to run for cover A new RondoDox botnet campaign uses an "exploit shotgun" - fire at ...
The Hacker News

PolarEdge Targets Cisco, ASUS, QNAP, Synology Routers in Expanding Botnet Campaign

Researchers detail PolarEdge TLS ELF backdoor targeting Cisco, ASUS, QNAP and Synology routers; config obfuscated with XOR ...
techtimes

SOHO Router-Targeting Botnet AVrecon Infiltrates More Than 70,000 Devices in 20 Countries: How Dangerous Is This Malware Strain?

A stealthy Linux malware called AVrecon has been infecting over 70,000 small office/home office (SOHO) routers, creating a botnet primarily aimed at stealing bandwidth and operating as a hidden ...

This dangerous new botnet is shooting off attacks across the world faster than can be tracked - here's what we know about RondoDox

RondoDox botnet exploits 56 vulnerabilities across 30+ internet-connected device types Its “exploit shotgun” approach is ...
Krebs on Security

DDoS Botnet Aisuru Blankets US ISPs in Record DDoS

A screenshot shared by XLabs showing the Aisuru botmasters recently celebrating a record-breaking 7.7 Tbps DDoS. The user at ...
The Hacker News

Researchers Warn RondoDox Botnet is Weaponizing Over 50 Flaws Across 30+ Vendors

RondoDox was first documented by Fortinet FortiGuard Labs back in July 2025, detailing attacks aimed at TBK digital video ...
Fudzilla

Botnet campaign hits unpatched TP-Link Archer AX-21 routers

A new botnet campaign is tearing through unpatched TP-Link routers like a dodgy kebab through the bowels of an Essex drunk. Dubbed "Ballista," this nasty piece of work has already infected over 6,000 ...
India West

US Shuts Down China-Backed Botnet Targeting Home Office Routers

WASHINGTON, DC (IANS) – The US government has shut down a Chinese government-backed botnet that hijacked “hundreds” of small office and home office routers in the US. The hackers, known to the private ...
Bleeping Computer

AVrecon malware infects 70,000 Linux routers to build botnet

Since at least May 2021, stealthy Linux malware called AVrecon was used to infect over 70,000 Linux-based small office/home office (SOHO) routers and add them to a botnet designed to steal bandwidth ...
TechSpot

AVrecon botnet operated unnoticed for two years, infecting 70,000 Linux-based routers

Facepalm: As the US Cybersecurity and Infrastructure Security Agency (CISA) recently warned, exploitation of networking devices such as SOHO routers can provide threat actors with a "global" attack ...
CSOonline

Persistent router botnets on the horizon, researcher says at Defcon

Security researcher Michael Coppola demonstrated how small and home office (SOHO) routers can be compromised and turned into botnet clients by updating them with backdoored versions of vendor-supplied ...
TechRepublic

Botnet Attack Targeted Routers: A Wake-Up Call for Securing Remote Employees’ Hardware

Botnet Attack Targeted Routers: A Wake-Up Call for Securing Remote Employees’ Hardware Your email has been sent The FBI spotted this state-sponsored attack that highlights how home office setups can ...