This page collects WhisperX intelligence signals tagged #ddos. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
In early January 2026, KrebsOnSecurity detailed how a disclosed vulnerability was exploited to build Kimwolf, the world's largest and most disruptive botnet. The individual controlling Kimwolf, using the handle 'Dort,' has since coordinated a sustained campaign of distributed denial-of-service (DDoS) attacks, doxing, a...
For the past week, the massive “Internet of Things” (IoT) botnet known as Kimwolf has been disrupting The Invisible Internet Project (I2P), a decentralized, encrypted communications network designed to anonymize and secure online communications. I2P users started reporting disruptions in the network around the same tim...
A new IoT botnet named Kimwolf has infected over 2 million devices, forcing them to participate in massive DDoS attacks and relay other malicious traffic. Its ability to scan local networks of compromised systems for additional IoT devices makes it a significant threat to organizations. Research indicates Kimwolf is su...
A destructive botnet named Kimwolf has infected over two million devices by mass-compromising a vast number of unofficial Android TV streaming boxes. The botnet forces infected devices to participate in distributed denial-of-service (DDoS) attacks and to relay abusive and malicious Internet traffic for 'residential pro...
A new botnet dubbed 'Kimwolf' has infected over 2 million devices globally, with concentrations in Vietnam, Brazil, India, Saudi Arabia, Russia, and the United States. Security firm Synthient reports that two-thirds of the infections are on Android TV boxes lacking basic security or authentication. The Kimwolf malware ...
Iranian hackers have launched spying expeditions, digital probes, and distributed denial of service (DDoS) attacks in the wake of the US and Israel launching missile strikes over the weekend. Security researchers urge organizations to expect more cyber intrusions as the conflict continues, warning of elevated malicious...
A newly disclosed vulnerability in the HTTP/2 protocol, dubbed 'MadeYouReset,' has triggered a critical security update for a core Java networking library. The flaw, cataloged as CVE-2025-55163, is a logical vulnerability that enables a novel form of DDoS attack. It exploits malformed HTTP/2 control frames to bypass th...
A public navigation site's Express server is operating without fundamental security protections, leaving it vulnerable to abuse, DDoS attacks, and data exfiltration. The server currently lacks any rate limiting, allowing API endpoints to be hammered with unlimited requests, and is missing essential security headers tha...
A newly disclosed, critical DDoS vulnerability in the HTTP/2 protocol, codenamed 'MadeYouReset,' is forcing immediate dependency updates across the software ecosystem. The vulnerability exploits a logical flaw in the protocol, allowing attackers to use malformed HTTP/2 control frames to bypass the max concurrent stream...
Ein 27-jähriger Deutscher, mutmaßlicher Betreiber der DDoS-on-Demand-Dienste Fluxstress und Netdowner, wurde in Bangkok festgenommen. Die Verhaftung markiert einen direkten Schlag gegen die kommerzielle Infrastruktur für koordinierte Cyberangriffe. Die Plattformen boten Kunden gegen Bezahlung die Möglichkeit, gezielte ...
In an unprecedented direct intervention, Europol has coordinated a mass notification campaign, sending emails to approximately 75,000 individuals across Europe suspected of using for-hire Distributed Denial-of-Service (DDoS) attack services. This move signals a major shift in law enforcement strategy, moving beyond inf...
The decentralized social network Bluesky has been battling a significant distributed denial-of-service (DDoS) attack for nearly a full day, causing ongoing service disruptions for its users. This prolonged assault highlights the persistent vulnerability of emerging social platforms to coordinated cyber attacks aimed at...
A new and aggressive variant of the Mirai botnet, dubbed 'Nexcorium,' is actively exploiting a critical vulnerability in TBK DVR devices to assemble a powerful DDoS army. The malware is targeting CVE-2024-3721, a command injection flaw that allows attackers to execute arbitrary code on vulnerable devices. This campaign...
Mastodon's primary server has been taken offline by a distributed denial-of-service (DDoS) attack, marking the second major assault on a decentralized social network in under a week. The attack, which floods servers with junk web traffic to overwhelm them, forced the flagship mastodon.social instance to go down, disrup...
A Brazilian technology firm positioned as a defender against distributed denial-of-service attacks is now accused of enabling the very threat infrastructure it was designed to neutralize. Security researchers have traced an extended campaign of sustained DDoS attacks targeting Brazilian internet service providers to a ...