The Hacker News

ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories

PM This week in cybersecurity: botnets, RCE flaws, AI-driven attacks, stealers, and more. Fast, no-fluff roundup.
Hackaday

This Week In Security: Linux Flaws, Python Ownage, And A Botnet Shutdown

The ides of security March are upon us — Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and Kubernetes as an ...
PC Magazine

US Disrupts Aisuru, Botnet Behind Record-Breaking 30Tbps DDoS Attacks

US Disrupts Aisuru, Botnet Behind Record-Breaking 30Tbps DDoS Attacks In total, the operation went after four botnets, estimated to have infected millions of devices across the globe, including TV ...
The Record

US seizes domains and infrastructure used in sprawling botnet campaigns

Law enforcement agencies in the U.S., Germany and Canada coordinated on a disruption operation designed to seize infrastructure used by four large botnets. The Justice Department said on Thursday ...
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

The GlassWorm malware campaign is being used to fuel an ongoing attack that leverages the stolen GitHub tokens to inject malware into hundreds of Python repositories. "The attack targets Python ...
blockchain

TypeScript Overtakes Python on GitHub as AI Tools Reshape Developer Choices

GitHub's Octoverse 2025 data shows TypeScript became the most-used language as 80% of new developers adopt Copilot within their first week. TypeScript has dethroned both Python and JavaScript to ...
Krebs on Security

Kimwolf Botnet Swamps Anonymity Network I2P

For the past week, the massive “Internet of Things” (IoT) botnet known as Kimwolf has been disrupting The Invisible Internet Project (I2P), a decentralized, encrypted communications network designed ...
CSOonline

SSHStalker botnet brute-forces its way onto 7,000 Linux machines

A newly discovered botnet is compromising poorly-protected Linux servers by brute-forcing weak SSH password login authentication. Researchers at Canada-based Flare Systems, who discovered the botnet, ...
Bleeping Computer

New Linux botnet SSHStalker uses old-school IRC for C2 comms

A newly documented Linux botnet named SSHStalker is using the IRC (Internet Relay Chat) communication protocol for command-and-control (C2) operations. The protocol was invented in 1988, and its ...
SecurityWeek

GoBruteforcer Botnet Targeting Crypto, Blockchain Projects

The botnet’s propagation is fueled by the AI-generated server deployments that use weak credentials, and legacy web stacks. An evolved GoBruteforcer botnet variant has been targeting cryptocurrency ...
Infosecurity-magazine.com

GoBruteforcer Botnet Targets Linux Servers

A botnet known as GoBruteforcer has been actively targeting Linux servers exposed to the internet, using large-scale brute-force attacks against common services such as FTP, MySQL, PostgreSQL and ...