Krebs on Security

The Kimwolf Botnet is Stalking Your Local Network

The security company Synthient currently sees more than 2 million infected Kimwolf devices distributed globally but with ...
SecurityWeek

Kimwolf Android Botnet Grows Through Residential Proxy Networks

The Kimwolf botnet has ensnared over 2 million Android devices, mainly exploiting an exposed ADB service through residential ...
Infosecurity Magazine

GoBruteforcer Botnet Targets Linux Servers

A botnet known as GoBruteforcer has been actively targeting Linux servers exposed to the internet, using large-scale ...
The Hacker News

Kimwolf Android Botnet Infects Over 2 Million Devices via Exposed ADB and Proxy Networks

Kimwolf is an Android botnet that infected 2M+ devices via exposed ADB, using proxy networks to run DDoS attacks and sell ...
Hosted on MSN

Asus responds to concerns over 9,000+ routers compromised by botnet — firmware updates and factory reset can purge routers of persistent backdoor

Asus has issued multiple statements regarding a highly publicized botnet attack infecting over 9,000 routers to date. Per our previous reporting, the "AyySSHush" botnet has infected its hosts through ...
SecurityWeek

RondoDox Botnet Exploiting React2Shell Vulnerability

December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.

Kimwolf Android botnet abuses residential proxies to infect internal devices

The Kimwolf botnet, an Android variant of the Aisuru malware, has grown to more than two million hosts, most of them infected ...
Dark Reading

RondoDox Botnet Expands Scope With React2Shell Exploitation

Recent attacks are targeting Next.js servers and pose a significant threat of cryptomining and other malicious activity to ...
The Hacker News

RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers

RondoDox botnet exploits the React2Shell vulnerability in Next.js, with over 90,000 exposed systems used to deploy miners and ...