Dutch coppers have pulled the plug on the Grum botnet just a week after the servers were identified by malware intelligence firm FireEye. The speedy removal of the servers shines light on how quickly ...

You’d think a nefarious slice of software designed to frustrate a practice plenty of us dislike — web ads — might engender cheers and well wishes. But no, the ZeroAccess botnet is hardly so noble: a ...

A botnet known as GoBruteforcer has been actively targeting Linux servers exposed to the internet, using large-scale brute-force attacks against common services such as FTP, MySQL, PostgreSQL and ...

A malware botnet known as 'Ebury' has infected almost 400,000 Linux servers since 2009, with roughly 100,000 still compromised as of late 2023. ESET researchers have been following the financially ...

A Linux-based botnet is alive and well, powering cryptocurrency theft and financial scams years after the imprisonment of one the key perpetrators behind it. The Ebury botnet — which was first ...

Our first story of 2026 revealed how a destructive new botnet called Kimwolf has infected more than two million devices by mass-compromising a vast number of unofficial Android TV streaming boxes.

Cheap Android TV boxes have quietly become one of the most dangerous devices on the home network, not because of what you watch on them but because of what they might be doing in the background.

A new botnet has been slowly growing over the past year by brute-forcing SSH logins and deploying cryptomining malware on Linux servers. The main bot client is based on the old Mirai worm whose source ...

Researchers at cybersecurity software provider Qualys Inc. are warning of a new Mirai botnet variant that’s being used to target vulnerabilities in AVTECH Cameras and Huawei HG523 routers. The variant ...

A botnet known as "GoBruteforcer" is compromising a wide range of servers that researchers suspect use AI-generated configurations, enlisting them into a botnet that can serve many different purposes.