#iot-botnet

[ follow ]
#ddos #supply-chain-attack #react2shell-cve-2025-55182 #browser-extension-compromise #rondodox #react2shell
Information security
fromThe Hacker News
1 week ago

Weekly Recap: IoT Exploits, Wallet Breaches, Rogue Extensions, AI Abuse & More

Steady, quiet exploitation of trusted mechanisms—updates, extensions, logins, and messages—drives long-lived attacks like RondoDox and supply-chain compromises.
Information security
fromThe Hacker News
1 week ago

RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers

A nine-month campaign used React2Shell (CVE-2025-55182) and other N-day flaws to enroll IoT devices and web apps into the RondoDox botnet, deploying miners and Mirai variants.
fromTechzine Global
1 month ago

ShadowV2 poses new threat to vulnerable IoT devices

The Mirai ecosystem has a new variant that, according to researchers at Fortinet, may have been used as a test for future large-scale attacks. The malware, known as ShadowV2, exploited a series of vulnerabilities in IoT devices from D-Link, TP-Link, DigiEver, TBK, DD-WRT, and others in late October. The activity coincided exactly with the global AWS outage and also stopped as soon as the outage was resolved.
Information security
#ddos
more#ddos
[ Load more ]