The Hacker News

SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits

Researchers uncover SSHStalker, an IRC botnet exploiting legacy Linux flaws and SSH servers to build persistent covert access.

Hackers resurrect the 90s IRC tricks with SSHStalker

Hackers resurrect 90s IRC tricks with SSHStalker, using old exploits to quietly compromise thousands of Linux servers ...
SecurityWeek

New ‘SSHStalker’ Linux Botnet Uses Old Techniques

The SSHStalker Linux botnet has ensnared 7,000 systems, deploying various scanners and malware, an IRC bot, and multiple kernel exploits.
Bleeping Computer

Developer of Mirai, Qbot-based DDoS botnets jailed for 13 months

A 22-year-old Washington man was sentenced to 13 months in prison for renting and developing Mirai and Qbot-based DDoS botnets used in DDoS attacks against targets from all over the world.

New Linux botnet SSHStalker uses old-school IRC for C2 comms

A newly documented Linux botnet named SSHStalker is using the IRC (Internet Relay Chat) communication protocol for command-and-control (C2) operations.
Threat Post

Dark_Nexus Botnet Compromises Thousands of ASUS, D-Link Routers

Researchers say the botnet has emerged over the past three months and shares aspects with Mirai and Qbot. A new botnet has compromised hundreds of ASUS, D-Link and Dasan Zhone routers over the past ...
Computer Weekly

It might be too soon to claim victory against Qakbot

The recent operation against the Qakbot (“Qbot”) botnet by the US’ FBI, Justice Department and their international partners is nothing short of commendable. By taking down this long-running botnet, we ...
Dark Reading

Peering Inside the IRC Botnet

The average life span of a command and control server in an Internet Relay Chat (IRC)-based botnet is less than two months. And these machines and their drones that make up a botnet are typically ...