On Wednesday, the U.S. Department of Justice (DoJ) announced the seizure of 48 domains linked to the facilitation of distributed denial-of-service (DDoS) attacks. These domains provided a platform for malicious actors to launch attacks, thereby diminishing the barriers to entry for cybercriminal activities. In connection with this crackdown, six individuals…
In early September 2023, Qrator Labs identified and successfully mitigated one of the year’s most consequential Layer 7 DDoS attacks, executed by what is currently recognized as the largest botnet in existence. This attack targeted a government organization and exploited 5.76 million compromised Internet of Things (IoT) devices, among other…
A newly discovered variant of the infamous Mirai botnet has emerged, exploiting multiple security vulnerabilities to spread across Linux and Internet of Things (IoT) devices. Identified in the latter half of 2022, this variant has been labeled V3G4 by researchers at Palo Alto Networks’ Unit 42. Their investigation has revealed…
Welcome to this week’s edition of the cybersecurity newsletter. Our goal is to arm you with the latest intelligence on cyber threats that could jeopardize your business operations. In this week’s issue, we examine critical updates regarding vulnerabilities affecting Apple devices, the rising threat of ransomware, unprecedented DDoS attacks, and…
Gcore Fends Off Massive DDoS Attack Targeting Client’s CDN Infrastructure In early January, Gcore successfully mitigated a significant cyber assault comprised of multiple Layer 3 and Layer 4 Distributed Denial-of-Service (DDoS) attacks that surged to a record peak of 650 Gbps. The attackers leveraged an extensive network of over 2,000…
June 09, 2025
Wazuh Server Vulnerability
A critical security flaw in the Wazuh Server, now patched, has been exploited by threat actors to deploy two distinct variants of the Mirai botnet for executing distributed denial-of-service (DDoS) attacks. Akamai, which identified these exploitation efforts in late March 2025, reports that the campaign is targeting CVE-2025-24016 (CVSS score: 9.9), a dangerous deserialization vulnerability enabling remote code execution on affected Wazuh servers. This vulnerability impacts all server software versions from 4.4.0 onward and was addressed in February 2025 with the release of version 4.9.1. A proof-of-concept (PoC) exploit became publicly available around the same time. The issue stems from the Wazuh API, where parameters in the DistributedAPI are serialized as JSON and then deserialized using “as_wazuh_object” in the framework/wazuh/core/cluster/common.py file. Malicious actors can exploit this vulnerability by injecting harmful JSON…
Two Separate Botnets Exploit Wazuh Server Vulnerability for Mirai-Based Attacks On June 9, 2025, cybersecurity experts reported that a critical vulnerability in the Wazuh Server is being actively exploited by malicious actors to deploy two different variants of the Mirai botnet. This exploitation has facilitated a series of distributed denial-of-service…
June 09, 2025
Wazuh Server Vulnerability
A critical security flaw in the Wazuh Server, now patched, has been exploited by threat actors to deploy two distinct variants of the Mirai botnet for executing distributed denial-of-service (DDoS) attacks. Akamai, which identified these exploitation efforts in late March 2025, reports that the campaign is targeting CVE-2025-24016 (CVSS score: 9.9), a dangerous deserialization vulnerability enabling remote code execution on affected Wazuh servers. This vulnerability impacts all server software versions from 4.4.0 onward and was addressed in February 2025 with the release of version 4.9.1. A proof-of-concept (PoC) exploit became publicly available around the same time. The issue stems from the Wazuh API, where parameters in the DistributedAPI are serialized as JSON and then deserialized using “as_wazuh_object” in the framework/wazuh/core/cluster/common.py file. Malicious actors can exploit this vulnerability by injecting harmful JSON…
Jun 23, 2025
Cyber Security / Hacking News
Not every threat presents itself as an obvious attack. Some issues may emerge as minor glitches, odd logs, or subtle delays that initially seem inconsequential—until they escalate. Could your system be under scrutiny in unexpected ways? The most perilous actions often go unnoticed. It’s critical to consider: what unnoticed patterns and overlooked signals could indicate brewing problems? This week’s findings illuminate these quiet signals, from attacks leveraging trusted tools to bypass MFA to supply chain vulnerabilities masquerading as routine interactions. Here are the key highlights from the cybersecurity sphere:
⚡ Highlight of the Week
Cloudflare Thwarts Record-Breaking 7.3 Tbps DDoS Attack — Cloudflare reported it successfully defended against the largest distributed denial-of-service (DDoS) attack ever documented, peaking at 7.3 terabits per second (Tbps). This attack targeted an undisclosed hosting provider, delivering an astonishing 37.4 terabytes in just 45 seconds.
Weekly Cybersecurity Recap: Significant Threats and Concerns Uncovered Date: June 23, 2025 Category: Cyber Security / Hacking News In the evolving landscape of cybersecurity, the most pressing threats often manifest in subtle ways. Incidents that initially appear as minor glitches or unexpected delays can evolve into significant risks. It’s crucial…
Jun 23, 2025
Cyber Security / Hacking News
Not every threat presents itself as an obvious attack. Some issues may emerge as minor glitches, odd logs, or subtle delays that initially seem inconsequential—until they escalate. Could your system be under scrutiny in unexpected ways? The most perilous actions often go unnoticed. It’s critical to consider: what unnoticed patterns and overlooked signals could indicate brewing problems? This week’s findings illuminate these quiet signals, from attacks leveraging trusted tools to bypass MFA to supply chain vulnerabilities masquerading as routine interactions. Here are the key highlights from the cybersecurity sphere:
⚡ Highlight of the Week
Cloudflare Thwarts Record-Breaking 7.3 Tbps DDoS Attack — Cloudflare reported it successfully defended against the largest distributed denial-of-service (DDoS) attack ever documented, peaking at 7.3 terabits per second (Tbps). This attack targeted an undisclosed hosting provider, delivering an astonishing 37.4 terabytes in just 45 seconds.
February 11, 2025
IoT Security / Cloud Security
The latest Gcore DDoS Radar report, which examines attack data from Q3 to Q4 2024, shows a staggering 56% year-over-year increase in DDoS attacks, with the largest recorded attack reaching 2 Tbps. The financial services sector experienced the most significant rise, with attacks jumping by 117%, while the gaming industry continued to be the primary target. These findings underscore the urgent need for robust and adaptive DDoS mitigation strategies as attacks grow both in frequency and precision.
Here are four crucial takeaways from the Gcore Radar report:
Volume and Sophistication of DDoS Attacks on the Rise: A 17% increase in total attacks, coupled with a new peak volume of 2 Tbps, highlights the pressing necessity for advanced protective measures.
Growing Risks for Financial Services: The 117% spike in attacks within this sector signals an urgent need for enhanced security protocols.
Shift Towards Shorter, High-Intensity Attacks: The prevalence of rapid burst attacks necessitates a reevaluation of traditional mitigation strategies, which may no longer be sufficient.
Let’s explore the data in detail.
Gcore DDoS Radar Highlights Substantial Surge in DDoS Attacks Date: February 11, 2025 Category: IoT Security / Cloud Security Gcore’s recent DDoS Radar report has unveiled significant insights into the landscape of Distributed Denial of Service (DDoS) attacks in the latter half of 2024, revealing a staggering 56% year-over-year increase…
February 11, 2025
IoT Security / Cloud Security
The latest Gcore DDoS Radar report, which examines attack data from Q3 to Q4 2024, shows a staggering 56% year-over-year increase in DDoS attacks, with the largest recorded attack reaching 2 Tbps. The financial services sector experienced the most significant rise, with attacks jumping by 117%, while the gaming industry continued to be the primary target. These findings underscore the urgent need for robust and adaptive DDoS mitigation strategies as attacks grow both in frequency and precision.
Here are four crucial takeaways from the Gcore Radar report:
Volume and Sophistication of DDoS Attacks on the Rise: A 17% increase in total attacks, coupled with a new peak volume of 2 Tbps, highlights the pressing necessity for advanced protective measures.
Growing Risks for Financial Services: The 117% spike in attacks within this sector signals an urgent need for enhanced security protocols.
Shift Towards Shorter, High-Intensity Attacks: The prevalence of rapid burst attacks necessitates a reevaluation of traditional mitigation strategies, which may no longer be sufficient.
Let’s explore the data in detail.
Cybercriminals are intensifying their methods, departing from conventional data encryption tactics to adopt a more aggressive form of extortion known as quadruple extortion. This concerning development is detailed in the latest Ransomware Report 2025: Building Resilience Amid a Volatile Threat Landscape, published today by Akamai, a prominent player in cybersecurity…
