A 13 year old hacker caught trying to build up botnet to hack CCTV cameras demonstrates that attacking IoT devices is literally child's play, thanks to widespread sharing of IoTmalware.
Vitali Kremez reports how the Necurs botnet is delivering a different type of malware that poses a threat specifically to the financial sector: the "Trickbot" banking Trojan.
In Case You Missed It: Facebook spreads malware; Instagram celeb hack; Logon breach id key; Spambot weaponises 711 m accounts; CeX hacked
A Paris-based security researcher, Benkow, spotted a massive spambot, dubbed Onliner, weaponising 711 million email and server accounts to distribute phishing emails laced with malware looking to steal user data.
Botnets built exclusively from IoT devices have very much become a 'thing - thingbots - and they are now becoming a primary infrastructure for a future darknet according to a report from cybersecurity firm F5 Networks.
In Case You Missed It: Skills gap real? Mirai hits DT; GDPR ignored; £14.5m cyber-centre; ApplePay vulnerable to two threats
Researchers have developed a potentially devastating new botnet that abuses infected victims' Active Directory Domain Controllers, turning them into internally hosted command and control servers.
The massive Mirai distributed denial of service (DDoS) attack that took down Dyn DNS last fall knocking out dozens of high-profile websites could have been much worse if the malicious actors had done a bit more research.
Old Wimax routers have been found to contain backdoors and could enable hackers to bypass authentication researchers have now disclosed, aiding use for DDoS attacks.
The Hajime malware has recruited 300,000 IoT devices to its botnet, but researchers are still baffled as to what the botnet 's purpose may be.
Researchers at the security company find that making money online from fake Viagra not so hard.
Malware which targeted IoT devices was doing more than launching DDoS attacks, researchers discovered, but they question how effective it would be.
The only thing worse than the plethora of internet-connected devices is the irrelevant chatter about IoT that could be distracting security teams from the real threats, as Davey Winder found out.
In Case You Missed It: Hotel ransomware report; Routers hijacked for botnet; X-Box, Playstation breach; Data centre vulnerability; insiders paid for secrets.
NHS Digital said "We are aware of the current issue concerning NHS IP addresses which occasionally results in users being directed to a simple verification form when accessing Google."
A new report from the Institute of Critical Infrastructure Technology has placed Mirai as one of the most insidiously profound threats of recent memory, offering a "quantum leap" to even unsophisticated attackers
Researchers have confirmed that it was a variant form of Mirai that was used to try and turn nearly a million Deutsche Telekom customers routers into a botnet over the weekend.
If attackers had succeeded in taking over 900,000 routers in Germany, we wouldn't be thinking of Deutsche Telekom as the victim but the enabler of a massive botnet.
IoT botnet blamed for Dyn attack - Mirai - has several code vulnerabilities but questions are raised over legality of its use in defence.
An researcher spotted threat actors actively updating and customising the Mirai botnet source code that was leaked less than two weeks ago.
A large scale DDoS attack, carried out by a botnet of hacked Internet of Things devices, many of which were made by Chinese firm Xiongmai has now prompted a product recall.
DDoS attacks using IOT botnets take down parts of the internet delivering Twitter, Spotify, Netflix, GitHub, Amazon and Reddit among others.
Since the source code to the Mirai IoT botnet was publicly leaked, researchers at Imperva have uncovered evidence of several low-level DDoS attacks that were likely perpetrated by new users testing out this suddenly accessible tool.
DDoS mitigation giant Akamai have made the strategic decision to remove Brian Kreb's website from their servers from a huge record-breaking DDoS attack of 626Gbps, now OVH is reporting of a 1100Gbps DDoS.
Networking and telecomms specialists Level 3 have discovered a botnet of 120,000 devices in the course of conducting DDoS research.
Researchers have found the first known Android mobile malware to use a Twitter account, rather than a traditional command-and-control server, to control infected devices.
Borg-like voice commands from your phone could take control of nearby Android devices using a newly demonstrated voice recognition vulnerability.
Lizard Squad's LizardStresser botnet rising in popularity as hackers and cyber-criminals increasingly look to it as a way of assimilating IoT devices for later DDoS attacks