#mirai — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #mirai, aggregated by home.social.
-
紅きベール Akaki Beeru
Радіо Poison_Raika
Akaki beeru no nukumori de tsutsumita maehttps://www.pixiv.net/novel/show.php?id=24377621
<>
#Poison_Raika #channel #radio #natsuki_karin #cevio_ai #mayoibito #akaki #tsuki #michibiiku #beeru #nukumori #tsutsumu #tami #kokoro #kizami_komu #kibou #michi_afureru #akaruki #mirai #oku
-
紅きベール Akaki Beeru
Радіо Poison_Raika
Akaki beeru no nukumori de tsutsumita maehttps://www.pixiv.net/novel/show.php?id=24377621
<>
#Poison_Raika #channel #radio #natsuki_karin #cevio_ai #mayoibito #akaki #tsuki #michibiiku #beeru #nukumori #tsutsumu #tami #kokoro #kizami_komu #kibou #michi_afureru #akaruki #mirai #oku
-
紅きベール Akaki Beeru
Радіо Poison_Raika
Akaki beeru no nukumori de tsutsumita maehttps://www.pixiv.net/novel/show.php?id=24377621
<>
#Poison_Raika #channel #radio #natsuki_karin #cevio_ai #mayoibito #akaki #tsuki #michibiiku #beeru #nukumori #tsutsumu #tami #kokoro #kizami_komu #kibou #michi_afureru #akaruki #mirai #oku
-
紅きベール Akaki Beeru
Радіо Poison_Raika
Akaki beeru no nukumori de tsutsumita maehttps://www.pixiv.net/novel/show.php?id=24377621
<>
#Poison_Raika #channel #radio #natsuki_karin #cevio_ai #mayoibito #akaki #tsuki #michibiiku #beeru #nukumori #tsutsumu #tami #kokoro #kizami_komu #kibou #michi_afureru #akaruki #mirai #oku
-
紅きベール Akaki Beeru
Це канал, де читають вголос твори Poison_Raika.
Honjitsu goshoukai suru sakuhin wa Akaki Beeru desuhttps://note.com/poison_raika/n/n7fb67483ae7f
<>
#Poison_Raika #channel #radio #natsuki_karin #cevio_ai #mayoibito #akaki #tsuki #michibiiku #beeru #nukumori #tsutsumu #tami #kokoro #kizami_komu #kibou #michi_afureru #akaruki #mirai #oku
-
紅きベール Akaki Beeru
Це канал, де читають вголос твори Poison_Raika.
Honjitsu goshoukai suru sakuhin wa Akaki Beeru desuhttps://note.com/poison_raika/n/n7fb67483ae7f
<>
#Poison_Raika #channel #radio #natsuki_karin #cevio_ai #mayoibito #akaki #tsuki #michibiiku #beeru #nukumori #tsutsumu #tami #kokoro #kizami_komu #kibou #michi_afureru #akaruki #mirai #oku
-
紅きベール Akaki Beeru
Це канал, де читають вголос твори Poison_Raika.
Honjitsu goshoukai suru sakuhin wa Akaki Beeru desuhttps://note.com/poison_raika/n/n7fb67483ae7f
<>
#Poison_Raika #channel #radio #natsuki_karin #cevio_ai #mayoibito #akaki #tsuki #michibiiku #beeru #nukumori #tsutsumu #tami #kokoro #kizami_komu #kibou #michi_afureru #akaruki #mirai #oku
-
紅きベール Akaki Beeru
Це канал, де читають вголос твори Poison_Raika.
Honjitsu goshoukai suru sakuhin wa Akaki Beeru desuhttps://note.com/poison_raika/n/n7fb67483ae7f
<>
#Poison_Raika #channel #radio #natsuki_karin #cevio_ai #mayoibito #akaki #tsuki #michibiiku #beeru #nukumori #tsutsumu #tami #kokoro #kizami_komu #kibou #michi_afureru #akaruki #mirai #oku
-
Middle East Malicious Infrastructure Report: 1,350+ C2 Servers Mapped Across 98 Providers
Between February and May 2026, over 1,350 active command-and-control servers were identified across 98 infrastructure providers spanning 14 Middle Eastern countries. Saudi Arabia's STC hosted 981 C2 servers, representing 72.4% of all regional malicious infrastructure, the largest concentration globally. C2 infrastructure dominated at 96.8% of detected activity, with IoT-focused botnets like Hajime, Mozi, and Mirai, alongside offensive frameworks including Tactical RMM, Cobalt Strike, and Sliver representing the primary malware families. The infrastructure supported diverse operations from state-sponsored espionage campaigns like Eagle Werewolf targeting state entities, to Malware-as-a-Service platforms, cryptomining operations, and destructive attacks such as DYNOWIPER. Key providers included SERVERS TECH FZCO in UAE, OMC in Israel, Türk Telekom, and Regxa in Iraq, demonstrating how telecommunications giants and specialized hosting services enable both commodity cybercrime and advanced persistent threat op...
Pulse ID: 6a0f8f36422c8adb515a9804
Pulse Link: https://otx.alienvault.com/pulse/6a0f8f36422c8adb515a9804
Pulse Author: AlienVault
Created: 2026-05-21 23:03:18Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CobaltStrike #CryptoMining #CyberCrime #CyberSecurity #Espionage #InfoSec #IoT #Israel #Malware #MalwareAsAService #MiddleEast #Mirai #OTX #OpenThreatExchange #RAT #SaudiArabia #Sliver #Telecom #Telecommunication #UAE #bot #botnet #AlienVault
-
Middle East Malicious Infrastructure Report: 1,350+ C2 Servers Mapped Across 98 Providers
Between February and May 2026, over 1,350 active command-and-control servers were identified across 98 infrastructure providers spanning 14 Middle Eastern countries. Saudi Arabia's STC hosted 981 C2 servers, representing 72.4% of all regional malicious infrastructure, the largest concentration globally. C2 infrastructure dominated at 96.8% of detected activity, with IoT-focused botnets like Hajime, Mozi, and Mirai, alongside offensive frameworks including Tactical RMM, Cobalt Strike, and Sliver representing the primary malware families. The infrastructure supported diverse operations from state-sponsored espionage campaigns like Eagle Werewolf targeting state entities, to Malware-as-a-Service platforms, cryptomining operations, and destructive attacks such as DYNOWIPER. Key providers included SERVERS TECH FZCO in UAE, OMC in Israel, Türk Telekom, and Regxa in Iraq, demonstrating how telecommunications giants and specialized hosting services enable both commodity cybercrime and advanced persistent threat op...
Pulse ID: 6a0f8f36422c8adb515a9804
Pulse Link: https://otx.alienvault.com/pulse/6a0f8f36422c8adb515a9804
Pulse Author: AlienVault
Created: 2026-05-21 23:03:18Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CobaltStrike #CryptoMining #CyberCrime #CyberSecurity #Espionage #InfoSec #IoT #Israel #Malware #MalwareAsAService #MiddleEast #Mirai #OTX #OpenThreatExchange #RAT #SaudiArabia #Sliver #Telecom #Telecommunication #UAE #bot #botnet #AlienVault
-
Middle East Malicious Infrastructure Report: 1,350+ C2 Servers Mapped Across 98 Providers
Between February and May 2026, over 1,350 active command-and-control servers were identified across 98 infrastructure providers spanning 14 Middle Eastern countries. Saudi Arabia's STC hosted 981 C2 servers, representing 72.4% of all regional malicious infrastructure, the largest concentration globally. C2 infrastructure dominated at 96.8% of detected activity, with IoT-focused botnets like Hajime, Mozi, and Mirai, alongside offensive frameworks including Tactical RMM, Cobalt Strike, and Sliver representing the primary malware families. The infrastructure supported diverse operations from state-sponsored espionage campaigns like Eagle Werewolf targeting state entities, to Malware-as-a-Service platforms, cryptomining operations, and destructive attacks such as DYNOWIPER. Key providers included SERVERS TECH FZCO in UAE, OMC in Israel, Türk Telekom, and Regxa in Iraq, demonstrating how telecommunications giants and specialized hosting services enable both commodity cybercrime and advanced persistent threat op...
Pulse ID: 6a0f8f36422c8adb515a9804
Pulse Link: https://otx.alienvault.com/pulse/6a0f8f36422c8adb515a9804
Pulse Author: AlienVault
Created: 2026-05-21 23:03:18Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CobaltStrike #CryptoMining #CyberCrime #CyberSecurity #Espionage #InfoSec #IoT #Israel #Malware #MalwareAsAService #MiddleEast #Mirai #OTX #OpenThreatExchange #RAT #SaudiArabia #Sliver #Telecom #Telecommunication #UAE #bot #botnet #AlienVault
-
Middle East Malicious Infrastructure Report: 1,350+ C2 Servers Mapped Across 98 Providers
Between February and May 2026, over 1,350 active command-and-control servers were identified across 98 infrastructure providers spanning 14 Middle Eastern countries. Saudi Arabia's STC hosted 981 C2 servers, representing 72.4% of all regional malicious infrastructure, the largest concentration globally. C2 infrastructure dominated at 96.8% of detected activity, with IoT-focused botnets like Hajime, Mozi, and Mirai, alongside offensive frameworks including Tactical RMM, Cobalt Strike, and Sliver representing the primary malware families. The infrastructure supported diverse operations from state-sponsored espionage campaigns like Eagle Werewolf targeting state entities, to Malware-as-a-Service platforms, cryptomining operations, and destructive attacks such as DYNOWIPER. Key providers included SERVERS TECH FZCO in UAE, OMC in Israel, Türk Telekom, and Regxa in Iraq, demonstrating how telecommunications giants and specialized hosting services enable both commodity cybercrime and advanced persistent threat op...
Pulse ID: 6a0f8f36422c8adb515a9804
Pulse Link: https://otx.alienvault.com/pulse/6a0f8f36422c8adb515a9804
Pulse Author: AlienVault
Created: 2026-05-21 23:03:18Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CobaltStrike #CryptoMining #CyberCrime #CyberSecurity #Espionage #InfoSec #IoT #Israel #Malware #MalwareAsAService #MiddleEast #Mirai #OTX #OpenThreatExchange #RAT #SaudiArabia #Sliver #Telecom #Telecommunication #UAE #bot #botnet #AlienVault
-
Middle East Malicious Infrastructure Report: 1,350+ C2 Servers Mapped Across 98 Providers
Between February and May 2026, over 1,350 active command-and-control servers were identified across 98 infrastructure providers spanning 14 Middle Eastern countries. Saudi Arabia's STC hosted 981 C2 servers, representing 72.4% of all regional malicious infrastructure, the largest concentration globally. C2 infrastructure dominated at 96.8% of detected activity, with IoT-focused botnets like Hajime, Mozi, and Mirai, alongside offensive frameworks including Tactical RMM, Cobalt Strike, and Sliver representing the primary malware families. The infrastructure supported diverse operations from state-sponsored espionage campaigns like Eagle Werewolf targeting state entities, to Malware-as-a-Service platforms, cryptomining operations, and destructive attacks such as DYNOWIPER. Key providers included SERVERS TECH FZCO in UAE, OMC in Israel, Türk Telekom, and Regxa in Iraq, demonstrating how telecommunications giants and specialized hosting services enable both commodity cybercrime and advanced persistent threat op...
Pulse ID: 6a0f8f36422c8adb515a9804
Pulse Link: https://otx.alienvault.com/pulse/6a0f8f36422c8adb515a9804
Pulse Author: AlienVault
Created: 2026-05-21 23:03:18Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CobaltStrike #CryptoMining #CyberCrime #CyberSecurity #Espionage #InfoSec #IoT #Israel #Malware #MalwareAsAService #MiddleEast #Mirai #OTX #OpenThreatExchange #RAT #SaudiArabia #Sliver #Telecom #Telecommunication #UAE #bot #botnet #AlienVault
-
紅きベール Akaki Beeru
Радіо Poison_Raika
Akaki beeru no nukumori de tsutsumita maehttps://www.pixiv.net/novel/show.php?id=24377621
<>
#Poison_Raika #channel #radio #natsuki_karin #cevio_ai #mayoibito #akaki #tsuki #michibiiku #beeru #nukumori #tsutsumu #tami #kokoro #kizami_komu #kibou #michi_afureru #akaruki #mirai #oku
-
紅きベール Akaki Beeru
Радіо Poison_Raika
Akaki beeru no nukumori de tsutsumita maehttps://www.pixiv.net/novel/show.php?id=24377621
<>
#Poison_Raika #channel #radio #natsuki_karin #cevio_ai #mayoibito #akaki #tsuki #michibiiku #beeru #nukumori #tsutsumu #tami #kokoro #kizami_komu #kibou #michi_afureru #akaruki #mirai #oku
-
紅きベール Akaki Beeru
Радіо Poison_Raika
Akaki beeru no nukumori de tsutsumita maehttps://www.pixiv.net/novel/show.php?id=24377621
<>
#Poison_Raika #channel #radio #natsuki_karin #cevio_ai #mayoibito #akaki #tsuki #michibiiku #beeru #nukumori #tsutsumu #tami #kokoro #kizami_komu #kibou #michi_afureru #akaruki #mirai #oku
-
紅きベール Akaki Beeru
Радіо Poison_Raika
Akaki beeru no nukumori de tsutsumita maehttps://www.pixiv.net/novel/show.php?id=24377621
<>
#Poison_Raika #channel #radio #natsuki_karin #cevio_ai #mayoibito #akaki #tsuki #michibiiku #beeru #nukumori #tsutsumu #tami #kokoro #kizami_komu #kibou #michi_afureru #akaruki #mirai #oku
-
https://www.wacoca.com/media/652463/ インド映画、ハリウッド超えた!? 9つの聖典狙う最凶の敵!『Mirai 運命の戦士』予告編 #MIRAI #Mirai運命の戦士 #movie #MovieCollection #MovieCollectionJP #VFX #アクション #インド映画 #ムビコレ
-
https://www.wacoca.com/media/652463/ インド映画、ハリウッド超えた!? 9つの聖典狙う最凶の敵!『Mirai 運命の戦士』予告編 #MIRAI #Mirai運命の戦士 #movie #MovieCollection #MovieCollectionJP #VFX #アクション #インド映画 #ムビコレ
-
https://www.wacoca.com/media/652463/ インド映画、ハリウッド超えた!? 9つの聖典狙う最凶の敵!『Mirai 運命の戦士』予告編 #MIRAI #Mirai運命の戦士 #movie #MovieCollection #MovieCollectionJP #VFX #アクション #インド映画 #ムビコレ
-
ΚΟΜΠΟΛΌΙ semantic-search.aepiot.com/advanced-sea... #TOYOTA #MIRAI advanced-search.headlines-world.com/advanced-sea... ΕΛΛΗΝΙΚΉ ΡΑΔΙΟΦΩΝΊΑ ΤΗΛΕΌΡΑΣΗ advanced-search.aepiot.com/advanced-sea... github.com/globalaudien... aePiot: Fast-track to Web 4.0. Build semantic nodes and dominate SEO.
MultiSearch Tag Explorer -
ΚΟΜΠΟΛΌΙ semantic-search.aepiot.com/advanced-sea... #TOYOTA #MIRAI advanced-search.headlines-world.com/advanced-sea... ΕΛΛΗΝΙΚΉ ΡΑΔΙΟΦΩΝΊΑ ΤΗΛΕΌΡΑΣΗ advanced-search.aepiot.com/advanced-sea... github.com/globalaudien... aePiot: Fast-track to Web 4.0. Build semantic nodes and dominate SEO.
MultiSearch Tag Explorer -
📰 Mirai Variant 'xlabs_v1' Builds DDoS Botnet by Hijacking IoT Devices with Exposed ADB Ports
🚨 New Mirai-based botnet 'xlabs_v1' hijacks IoT devices & Android TVs via exposed ADB ports (TCP/5555). The botnet is used for DDoS-for-hire services, targeting Minecraft servers. #Mirai #Botnet #DDoS #IoTSecurity
-
Mirai-Based xlabs_v1 Botnet Exploits ADB for IoT Hijacking
Meet xlabs_v1, a powerful botnet derived from Mirai that's hijacking IoT devices by exploiting exposed Android Debug Bridge (ADB) services on TCP port 5555. This sneaky malware infects devices like Android TV boxes and smart TVs, and can even measure a device's bandwidth to sell it on the black market.
#IotBotnet #Mirai #AdbExploitation #EmergingThreats #IotHijacking
-
Mirai Turns Unsupported D-Link Routers into DDoS Weapons Using CVE-2025-29635
#CVE_2025_29635 #Mirai
https://www.secpod.com/blog/mirai-turns-unsupported-d-link-routers-into-ddos-weapons-using-cve-2025-29635/ -
Mirai Turns Unsupported D-Link Routers into DDoS Weapons Using CVE-2025-29635
#CVE_2025_29635 #Mirai
https://www.secpod.com/blog/mirai-turns-unsupported-d-link-routers-into-ddos-weapons-using-cve-2025-29635/ -
Mirai Turns Unsupported D-Link Routers into DDoS Weapons Using CVE-2025-29635
#CVE_2025_29635 #Mirai
https://www.secpod.com/blog/mirai-turns-unsupported-d-link-routers-into-ddos-weapons-using-cve-2025-29635/ -
Mirai Turns Unsupported D-Link Routers into DDoS Weapons Using CVE-2025-29635
#CVE_2025_29635 #Mirai
https://www.secpod.com/blog/mirai-turns-unsupported-d-link-routers-into-ddos-weapons-using-cve-2025-29635/ -
Mirai Turns Unsupported D-Link Routers into DDoS Weapons Using CVE-2025-29635
#CVE_2025_29635 #Mirai
https://www.secpod.com/blog/mirai-turns-unsupported-d-link-routers-into-ddos-weapons-using-cve-2025-29635/ -
https://www.europesays.com/cz/72318/ Zánovní a luxusní Toyota už za 300.000 Kč? Tak proč ji nikdo nechce? #AlternativníPohony #bazar #Business #Byznys #Mirai #OjetéVozy #RedakčníVideo #toyota #ToyotaMirai #VIDEO #Vodík #VodíkováAuta
-
Potassium update: the Mirai fork @synthient reported in March (https://x.com/deobfuscately/status/2033923869782712514) is still active and the operator appears to have taken up Dutch poetry. The new C2 domathreatintelkankerinmijnrechterteelbal[.]st (would not recommend pasting that into Google Translate during standup.)
Same key material and HTTP C2 protocol as the original potassium.vitacoco...[.]st variant. 11-port random C2 rotation, spreading via ADB to Android TV boxes.
IoCs:
a87aa7995ee9996952edb323d703875812f71d08237756ab44367f10e6197c7e
6833cb4681ac69281474be2c626df06cd90bb05bec72ae697cf219a6603826c9
3f13e18e190a7fc4c795d7caa83534d2879376ce43fd1a9120f23e48639cfe85C2: ikhebkankerinmijnrechterteelbal[.]st → 34.245.45[.]153
Dropper: 92.38.186[.]44 (HTTP + netcat :25565) -
Potassium update: the Mirai fork @synthient reported in March (https://x.com/deobfuscately/status/2033923869782712514) is still active and the operator appears to have taken up Dutch poetry. The new C2 domain is ikhebkankerinmijnrechterteelbal[.]st (would not recommend pasting that into Google Translate during standup.)
Same key material and HTTP C2 protocol as the original potassium.vitacoco...[.]st variant. 11-port random C2 rotation, spreading via ADB to Android TV boxes.
IoCs:
a87aa7995ee9996952edb323d703875812f71d08237756ab44367f10e6197c7e
6833cb4681ac69281474be2c626df06cd90bb05bec72ae697cf219a6603826c9
3f13e18e190a7fc4c795d7caa83534d2879376ce43fd1a9120f23e48639cfe85C2: ikhebkankerinmijnrechterteelbal[.]st → byte-swapped → 45.153.34[.]245
Dropper: 92.38.186[.]44 (HTTP + netcat :25565)edit: added byte-swapped C2 value
-
Potassium update: the Mirai fork @synthient reported in March (https://x.com/deobfuscately/status/2033923869782712514) is still active and the operator appears to have taken up Dutch poetry. The new C2 domain is ikhebkankerinmijnrechterteelbal[.]st (would not recommend pasting that into Google Translate during standup.)
Same key material and HTTP C2 protocol as the original potassium.vitacoco...[.]st variant. 11-port random C2 rotation, spreading via ADB to Android TV boxes.
IoCs:
a87aa7995ee9996952edb323d703875812f71d08237756ab44367f10e6197c7e
6833cb4681ac69281474be2c626df06cd90bb05bec72ae697cf219a6603826c9
3f13e18e190a7fc4c795d7caa83534d2879376ce43fd1a9120f23e48639cfe85C2: ikhebkankerinmijnrechterteelbal[.]st → byte-swapped → 45.153.34[.]245
Dropper: 92.38.186[.]44 (HTTP + netcat :25565)edit: added byte-swapped C2 value
-
Potassium update: the Mirai fork @synthient reported in March (https://x.com/deobfuscately/status/2033923869782712514) is still active and the operator appears to have taken up Dutch poetry. The new C2 domain is ikhebkankerinmijnrechterteelbal[.]st (would not recommend pasting that into Google Translate during standup.)
Same key material and HTTP C2 protocol as the original potassium.vitacoco...[.]st variant. 11-port random C2 rotation, spreading via ADB to Android TV boxes.
IoCs:
a87aa7995ee9996952edb323d703875812f71d08237756ab44367f10e6197c7e
6833cb4681ac69281474be2c626df06cd90bb05bec72ae697cf219a6603826c9
3f13e18e190a7fc4c795d7caa83534d2879376ce43fd1a9120f23e48639cfe85C2: ikhebkankerinmijnrechterteelbal[.]st → byte-swapped → 45.153.34[.]245
Dropper: 92.38.186[.]44 (HTTP + netcat :25565)edit: added byte-swapped C2 value
-
Potassium update: the Mirai fork @synthient reported in March (https://x.com/deobfuscately/status/2033923869782712514) is still active and the operator appears to have taken up Dutch poetry. The new C2 domain is ikhebkankerinmijnrechterteelbal[.]st (would not recommend pasting that into Google Translate during standup.)
Same key material and HTTP C2 protocol as the original potassium.vitacoco...[.]st variant. 11-port random C2 rotation, spreading via ADB to Android TV boxes.
IoCs:
a87aa7995ee9996952edb323d703875812f71d08237756ab44367f10e6197c7e
6833cb4681ac69281474be2c626df06cd90bb05bec72ae697cf219a6603826c9
3f13e18e190a7fc4c795d7caa83534d2879376ce43fd1a9120f23e48639cfe85C2: ikhebkankerinmijnrechterteelbal[.]st → byte-swapped → 45.153.34[.]245
Dropper: 92.38.186[.]44 (HTTP + netcat :25565)edit: added byte-swapped C2 value
-
Філософська прочуханка
Чи готові ви до того, щоб молот філософії
обрушився на вашу голову?https://www.pixiv.net/novel/show.php?id=26223706
<>
#AI小説 #hiru_yasumi #shukuzu #bentou #kakomu #djugyou #yoshuu #gamen #mirai #kibou #takusu #kousha #kioku #netto #koufun #yousu #kagayaku #koukoku #gazou #miru #hitomi #kaiwa #daihyou #kinou #kimatsu #tesuto
-
Філософська прочуханка
Чи готові ви до того, щоб молот філософії
обрушився на вашу голову?https://note.com/deadly_poison_0/n/n40c583137814
<>
#AI小説 #hiru_yasumi #shukuzu #bentou #kakomu #djugyou #yoshuu #gamen #mirai #kibou #takusu #kousha #kioku #netto #koufun #yousu #kagayaku #koukoku #gazou #miru #hitomi #kaiwa #daihyou #kinou #kimatsu #tesuto
-
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
https://krebsonsecurity.com/2026/04/anti-ddos-firm-heaped-attacks-on-brazilian-isps/
#InternetofThings(IoT) #TP-LinkArcherAX21 #ALittleSunshine #ErickNascimento #DDoS-for-Hire #DataBreaches #HugeNetworks #WebFraud2.0 #mirai #DDoS
-
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
https://krebsonsecurity.com/2026/04/anti-ddos-firm-heaped-attacks-on-brazilian-isps/
#InternetofThings(IoT) #TP-LinkArcherAX21 #ALittleSunshine #ErickNascimento #DDoS-for-Hire #DataBreaches #HugeNetworks #WebFraud2.0 #mirai #DDoS
-
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
https://krebsonsecurity.com/2026/04/anti-ddos-firm-heaped-attacks-on-brazilian-isps/
#InternetofThings(IoT) #TP-LinkArcherAX21 #ALittleSunshine #ErickNascimento #DDoS-for-Hire #DataBreaches #HugeNetworks #WebFraud2.0 #mirai #DDoS
-
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
https://krebsonsecurity.com/2026/04/anti-ddos-firm-heaped-attacks-on-brazilian-isps/
#InternetofThings(IoT) #TP-LinkArcherAX21 #ALittleSunshine #ErickNascimento #DDoS-for-Hire #DataBreaches #HugeNetworks #WebFraud2.0 #mirai #DDoS
-
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
https://krebsonsecurity.com/2026/04/anti-ddos-firm-heaped-attacks-on-brazilian-isps/
#InternetofThings(IoT) #TP-LinkArcherAX21 #ALittleSunshine #ErickNascimento #DDoS-for-Hire #DataBreaches #HugeNetworks #WebFraud2.0 #mirai #DDoS
-
DDoS-for-Hire Operation Exposed: How an Operator's Debug Build Unraveled a Commercial Game-Server Botnet
An exposed open directory on a Netherlands-hosted server revealed the complete operational toolkit of xlabs_v1, a Mirai-derived IoT botnet operated by an actor using the handle Tadashi. The operation provides DDoS-for-hire services specifically targeting game servers and Minecraft hosts through 21 distinct flood attack variants. The botnet exploits Android Debug Bridge (ADB) on TCP/5555 to compromise over 4 million potentially vulnerable IoT devices including Android TV boxes, smart TVs, and routers. The operation features bandwidth profiling to price-tier infected devices, ChaCha20 string encryption with cryptographic weaknesses, and competitor-eradication routines. Infrastructure analysis consolidated the entire operation within a single bulletproof /24 netblock in the Netherlands, with co-located cryptojacking infrastructure also identified.
Pulse ID: 69f25f09e5c3a33611f7cb16
Pulse Link: https://otx.alienvault.com/pulse/69f25f09e5c3a33611f7cb16
Pulse Author: AlienVault
Created: 2026-04-29 19:42:01Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Android #ChaCha20 #CryptoJacking #CyberSecurity #DDoS #DoS #Encryption #InfoSec #IoT #Minecraft #Mirai #OTX #OpenThreatExchange #RAT #TCP #TheNetherlands #bot #botnet #AlienVault