A critical privilege escalation vulnerability in MikroTik RouterOS could allow remote attackers to execute arbitrary code, giving them complete control of vulnerable devices. This flaw, designated as CVE-2023-30799, carries a CVSS score of 9.1, indicating its severity. It is estimated that between 500,000 and 900,000 RouterOS systems might be exploited…
Major Data Breach at Staminus Communications Exposes Customer Information Staminus Communications, a hosting provider based in California known for its Distributed Denial of Service (DDoS) protection services, is facing a significant data breach. This incident has resulted in the unauthorized exposure of personal and sensitive information belonging to its clientele,…
The ICE List website, also referred to as the ICE List Wiki, has become incapacitated due to a significant cyber attack, occurring just as it aimed to disclose the identities of numerous federal agents in the United States, particularly those linked to Immigration and Customs Enforcement (ICE). Dominick Skinner, the…
Over a Decade in Prison for Massachusetts Man Behind DDoS Attacks on Healthcare Networks A Massachusetts man has been sentenced to over 10 years in federal prison for orchestrating Distributed Denial-of-Service (DDoS) attacks against the computer networks of two healthcare organizations in 2014. The attacks were reportedly motivated by a…
Recent law enforcement efforts reveal that individuals who engaged with DDoS-for-hire services may now be facing serious repercussions. Following the takedown of the world-renowned DDoS-for-hire platform Webstresser.org in April 2018, authorities are now focusing on the clients who utilized this service to orchestrate millions of cyber attacks against a range…
This week, VFEmail.net, a U.S.-based secure email provider, reported a catastrophic data breach that resulted in the complete loss of user data and backups. The attack, executed by unidentified hackers, devastated the company’s infrastructure, erasing nearly two decades of information in just a few hours. Such a loss is a…
A recent malware campaign has emerged, exploiting two zero-day vulnerabilities that enable remote code execution (RCE) to integrate routers and video recording devices into a Mirai-based distributed denial-of-service (DDoS) botnet. According to an advisory from Akamai, “The payload specifically targets routers and network video recorders (NVRs) with default admin credentials,…
In a significant development in cybersecurity, a new variant of the notorious Mirai botnet—dubbed “Mukashi”—is actively exploiting a newly discovered critical vulnerability affecting network-attached storage (NAS) devices. This attack aims to remotely compromise and commandeer vulnerable machines, reflecting an escalation in tactics employed by cybercriminals. Mukashi employs brute-force techniques, systematically…
In the third quarter of 2025, the Internet experienced a significant spike in cyberattacks, as documented in a thorough DDoS threat report from Cloudflare, a leading web security and infrastructure firm. This surge was notably driven by a prominent IoT botnet known as Aisuru, which executed some of the largest…
