The Gayfemboy botnet exploits the vulnerability of 0-day routers for global DDoS attacks

8 January 2025 1 minute Author: Newsman

Ice Research researchers have discovered a powerful new botnet called Gayfemboy, which uses 0-day vulnerabilities in industrial routers to launch DDoS attacks and infect more than 15,000 devices worldwide.

The Gayfemboy botnet, based on the Mirai code, has demonstrated high resilience and advanced capabilities. Since the beginning of 2024, it has been actively used and distributed among industrial routers, video recorders and smart devices. The main affected devices are Four-Faith routers with the 0-day vulnerability (CVE-2024-12856), as well as ASUS, Kguard and Vimar devices. The botnet attack peaked in October and November 2024, generating up to 100GB of traffic per second.

Mirai is a well-known botnet that has influenced the emergence of many new threats. However, Gayfemboy has become particularly dangerous due to the introduction of new encryption commands and mechanisms.

Its infrastructure spans China, the US, Iran, Russia and Turkey. Cybersecurity experts recommend installing the latest firmware updates, isolating critical systems from vulnerable devices, and using DDoS protection solutions. Gayfemboy’s story shows how quickly threats in cyberspace evolve.

Other related articles
News
Read more
Cyberattack on Casio
Casio was the victim of a ransomware attack that leaked confidential information about the company's employees and partners. information of employees and partners was leaked. The company refused to pay the ransom and is working to strengthen the cyber security of its systems.
42
News
Read more
NVIDIA releases Project DIGITS – a personal supercomputer with AI
NVIDIA announced Project DIGITS - a $3,000 personal supercomputer with artificial intelligence based on the Grace Blackwell superchip. The system offers one petaflop of computing power, 128 GB of memory, up to 4 TB of storage and can run models with 200 billion parameters. The system is scheduled to go on sale in May 2025.
56
News
Read more
Green Bay Packers report data breach
Green Bay Packers report data breach: Hackers stole personal information and credit cards of more than 8,500 fans. The attack was caused by malicious code on the Pro Shop website. Victims are offered three years of free credit history monitoring.
37
Found an error?
If you find an error, take a screenshot and send it to the bot.