China disguises cyberattacks with ‘covert network’ botnets, US and allies warn

Hackers working for the Chinese government are increasingly hiding their attacks behind ready-made networks of hacked routers ...

This worrying botnet targets unsecure TP-Link routers - thousands of devices already hacked

Old TP-Link router flaw is being abused again The threat actors are building out a botnet named Ballista They are operating ...
Hoodline

Bay Area Home Routers Targeted as China-Linked Hackers Build Stealth Cyber Army

International cyber agencies are sounding the alarm that China-nexus hackers have quietly pivoted to a new playbook, turning ...

China-nexus cyber actors' are turning routers and IoT infrastructure into covert botnets 'at scale' – NCSC, Five Eyes, and others warn of campaign involving Typhoo…

Earlier this week, security agencies from 10 countries, including the NSA, DOJ, NCSC, and others, published a new paper ...
CSOonline

New Mirai botnet targets industrial routers

The botnet’s preferred targets include Four-Faith and Neterbit routers or smart home devices. Experts from VulnCheck reported at the end of December that a vulnerability in Four-Faith industrial ...

Chinese attackers are pwning your infrastructure to use in attacks, 10 countries warn

A majority of China-linked threat actors are using compromised routers and IoT devices worldwide, turning this gear into proxy networks to carry out further intrusions, steal sensitive data, and ...
SecurityWeek

Mirai Botnet Targets Flaw in Discontinued D-Link Routers

A Mirai botnet has started exploiting CVE-2025-29635, a year-old command injection vulnerability in discontinued D-Link ...

New Mirai campaign exploits RCE flaw in EoL D-Link routers

A new Mirai-based malware campaign is actively exploiting CVE-2025-29635, a high-severity command-injection vulnerability ...
The Hacker News

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

CVE-2024-3721 and CVE-2023-33538 exploited in TBK DVRs and EoL TP-Link routers, enabling Mirai variants and DDoS risk.
Android

ASUS Router Alert: Thousands Hacked to Form Massive Botnet

Thousands of ASUS routers have been hacked to form a major botnet, exploiting vulnerabilities including CVE-2023-39780. Attackers installed persistent backdoors, making detection difficult. Users are ...
Bleeping Computer

New Mirai botnet targets industrial routers with zero-day exploits

A relatively new Mirai-based botnet has been growing in sophistication and is now leveraging zero-day exploits for security flaws in industrial routers and smart home devices. Exploitation of ...