DMV.Community

6 posts6 participants1 post today

OTX BotUnmasking the new XorDDoS controller and infrastructureThe XorDDoS trojan, a DDoS malware targeting Linux machines, continues to spread globally with over 70% of attacks targeting the United States from Nov 2023 to Feb 2025. The operators are believed to be Chinese-speaking individuals based on language settings. A new 'VIP version' of the XorDDoS controller and central controller have been discovered, enabling more sophisticated and widespread attacks. The malware uses SSH brute-force attacks to gain access and implements persistence mechanisms. A new central controller allows threat actors to manage multiple sub-controllers simultaneously, enhancing attack coordination. The infection chain, decryption methods, and network communication patterns between the trojan, sub-controller, and central controller are analyzed in detail.Pulse ID: 6800fccf8db6537ac15e75fb Pulse Link: <a href="https://otx.alienvault.com/pulse/6800fccf8db6537ac15e75fb" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://otx.alienvault.com/pulse/6800fccf8db6537ac15e75fb</a> Pulse Author: AlienVault Created: 2025-04-17 13:06:23Be advised, this data is unverified and should be considered preliminary. Always do further verification.<a href="https://social.raytec.co/tags/Chinese" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Chinese</a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://social.raytec.co/tags/DDoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DDoS</a> <a href="https://social.raytec.co/tags/DoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DoS</a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InfoSec</a> <a href="https://social.raytec.co/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> <a href="https://social.raytec.co/tags/Mac" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Mac</a> <a href="https://social.raytec.co/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Malware</a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OTX</a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenThreatExchange</a> <a href="https://social.raytec.co/tags/RAT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RAT</a> <a href="https://social.raytec.co/tags/RCE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RCE</a> <a href="https://social.raytec.co/tags/SMS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMS</a> <a href="https://social.raytec.co/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSH</a> <a href="https://social.raytec.co/tags/Trojan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Trojan</a> <a href="https://social.raytec.co/tags/Troll" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Troll</a> <a href="https://social.raytec.co/tags/UnitedStates" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UnitedStates</a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bot</a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AlienVault</a>

OTX BotJScript to PowerShell: Breaking Down a Loader Delivering XWorm and RhadamanthysThis analysis examines a sophisticated malware loader that utilizes JScript to launch obfuscated PowerShell code, ultimately delivering payloads such as XWorm and Rhadamanthys. The loader employs geofencing tactics, targeting victims in the United States with XWorm RAT, while deploying Rhadamanthys stealer to users outside the U.S. The attack chain involves multiple stages of obfuscation and deobfuscation, including decimal encoding and string manipulation. The final payload is injected into RegSvcs.exe using reflective loading techniques. The loader also performs various cleanup actions to evade detection and remove traces of its activity. Both XWorm and Rhadamanthys are advanced malware variants with capabilities ranging from DDoS attacks to cryptocurrency theft.Pulse ID: 67ff46c3697a4976dc919b5d Pulse Link: <a href="https://otx.alienvault.com/pulse/67ff46c3697a4976dc919b5d" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://otx.alienvault.com/pulse/67ff46c3697a4976dc919b5d</a> Pulse Author: AlienVault Created: 2025-04-16 05:57:23Be advised, this data is unverified and should be considered preliminary. Always do further verification.<a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://social.raytec.co/tags/DDoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DDoS</a> <a href="https://social.raytec.co/tags/DoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DoS</a> <a href="https://social.raytec.co/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ICS</a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InfoSec</a> <a href="https://social.raytec.co/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Malware</a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OTX</a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenThreatExchange</a> <a href="https://social.raytec.co/tags/PowerShell" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerShell</a> <a href="https://social.raytec.co/tags/RAT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RAT</a> <a href="https://social.raytec.co/tags/Rhadamanthys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Rhadamanthys</a> <a href="https://social.raytec.co/tags/UnitedStates" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UnitedStates</a> <a href="https://social.raytec.co/tags/Worm" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Worm</a> <a href="https://social.raytec.co/tags/XWorm" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#XWorm</a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bot</a> <a href="https://social.raytec.co/tags/cryptocurrency" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cryptocurrency</a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AlienVault</a>

Dendrobatus AzureusI have just taken the time to thoroughly read the following article This article has led me to the conclusion that an Open{source} War will have to be waged against LLM large language model abusers of data collection.The work of these bots is pure DDoS denial of service. An interesting set of offensive tools have been programmed and are already implemented. They have proven to be quite effective and are being refined into sophistication to literally work to knock these networks of bots offline, in a DOT MMORPG approach.It is unthinkable that LLM bots steal our Open Source resources servers bandwidth and financial cashflow without serious repercussions!WTF are LLM companies thinking? Even Meta has waged war against us!LLM has waged a brutal war.The Open Source Community is responding; even those at The Dark Side of the internet are making tools to assist everyone against Artificial Intelligence LLM DDoS attacks, which knock whole Open Source Networks offline, as we speak.It doesn't matter if in the end it looks like a Terminator landscape globally on the IT scale. Open source will win. LLM will disappear...<a href="https://mastodon.bsd.cafe/tags/DDoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DDoS</a> <a href="https://mastodon.bsd.cafe/tags/LLM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LLM</a> <a href="https://mastodon.bsd.cafe/tags/bots" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bots</a> <a href="https://mastodon.bsd.cafe/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://mastodon.bsd.cafe/tags/OpenAI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenAI</a> <a href="https://mastodon.bsd.cafe/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> <a href="https://mastodon.bsd.cafe/tags/KDE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#KDE</a> <a href="https://mastodon.bsd.cafe/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GitHub</a> <a href="https://mastodon.bsd.cafe/tags/GitLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GitLab</a> <a href="https://mastodon.bsd.cafe/tags/Bash" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Bash</a> <a href="https://mastodon.bsd.cafe/tags/sh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sh</a>

beSpacificVia <a href="https://newsie.social/tags/LLRX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LLRX</a> <a href="https://newsie.social/@psuPete" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@psuPete</a> Recommends Weekly highlights on cyber security issues, 4/12/25 5 highlights - <a href="https://newsie.social/tags/Biometrics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Biometrics</a> vs. <a href="https://newsie.social/tags/passcodes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passcodes</a>: What lawyers recommend if you’re worried about <a href="https://newsie.social/tags/warrantless" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#warrantless</a> phone searches; <a href="https://newsie.social/tags/DDoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DDoS</a> Attacks Now Key Weapons in Geopolitical Conflicts, NETSCOUT Warns; <a href="https://newsie.social/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Google</a> Maps doubles down on preventing fake reviews; Large number of US adults view <a href="https://newsie.social/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> as a threat: Report; Explosive Growth of Non-Human Identities Creating Massive <a href="https://newsie.social/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Security</a> Blind Spots <a href="https://www.llrx.com/2025/04/pete-recommends-weekly-highlights-on-cyber-security-issues-april-12-2025/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.llrx.com/2025/04/pete-recommends-weekly-highlights-on-cyber-security-issues-april-12-2025/</a> <a href="https://newsie.social/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a>

Max ResingJust wanted to share some thoughts on <a href="https://infosec.exchange/tags/RFC9715" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RFC9715</a> - an <a href="https://infosec.exchange/tags/RFC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RFC</a> that defines standards on reducing the <a href="https://infosec.exchange/tags/DNS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DNS</a> issue of IP fragmentation over <a href="https://infosec.exchange/tags/UDP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UDP</a>. It's not a long read, but a good one for everyone who understands the issues of large UDP responses on the <a href="https://infosec.exchange/tags/Internet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Internet</a>. A great leap forward to (hopefully) reduce the reflection/amplification <a href="https://infosec.exchange/tags/DDoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DDoS</a> potential of DNS.Just today I learned that <a href="https://infosec.exchange/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Google</a> will configure their public DNS resolvers to limit to ~1400 bytes (smaller adjustments expected while figuring out the sweet spot in production). From now on, DNS responses which exceed this limit will have the truncated flag set instructing the client to resolve back to <a href="https://infosec.exchange/tags/TCP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TCP</a>. <a href="https://infosec.exchange/tags/ipv4" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ipv4</a> <a href="https://infosec.exchange/tags/ipv6" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ipv6</a> <a href="https://infosec.exchange/tags/ietf" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ietf</a>

jbz😎 Open source devs are fighting AI crawlers with cleverness and vengeance —<a href="https://mstdn.social/@TechCrunch" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@TechCrunch</a> ｢ It’s intended to “slow down, confuse, and waste the resources of AI Crawlers and other bots that don’t respect ‘no crawl’ directives,” Cloudflare described in its blog post. Cloudflare said it feeds misbehaving AI crawlers “irrelevant content rather than extracting your legitimate website data.” ｣<a href="https://techcrunch.com/2025/03/27/open-source-devs-are-fighting-ai-crawlers-with-cleverness-and-vengeance/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://techcrunch.com/2025/03/27/open-source-devs-are-fighting-ai-crawlers-with-cleverness-and-vengeance/</a><a href="https://indieweb.social/tags/ddos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ddos</a> <a href="https://indieweb.social/tags/ai" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ai</a> <a href="https://indieweb.social/tags/aicrawlers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#aicrawlers</a> <a href="https://indieweb.social/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a>

kevin ⁂ (he/him)🔗 RE: "Denial" Jeremy Keith on the Denial of using AI.👉 <a href="https://kevingimbel.de/link-blog/re-https-adactio-com-journal-21831" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://kevingimbel.de/link-blog/re-https-adactio-com-journal-21831</a><a href="https://fosstodon.org/tags/linkblog" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linkblog</a> <a href="https://fosstodon.org/tags/SuggestedRead" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SuggestedRead</a> <a href="https://fosstodon.org/tags/ai" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ai</a> <a href="https://fosstodon.org/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tech</a> <a href="https://fosstodon.org/tags/ddos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ddos</a> <a href="https://fosstodon.org/tags/open" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#open</a> web

JordanI've seen a real uptick the past couple of days in attacks on my IP address space. Not sure if I'm being targeted, or part of a wider campaign. Oh well, fail2ban makes quick work of them 😸<a href="https://fosstodon.org/tags/selfhosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#selfhosted</a> <a href="https://fosstodon.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://fosstodon.org/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://fosstodon.org/tags/ddos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ddos</a> <a href="https://fosstodon.org/tags/cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cyberattack</a> <a href="https://fosstodon.org/tags/firewall" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#firewall</a> <a href="https://fosstodon.org/tags/fail2ban" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fail2ban</a> <a href="https://fosstodon.org/tags/subjam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#subjam</a>

Rachel RawlingsI'm having trouble figuring out what kind of botnet has been hammering our web servers over the past week. Requests come in from tens of thousands of addresses, just once or twice each (and not getting blocked by fail2ban), with different browser strings (Chrome versions ranging from 24.0.1292.0 - 108.0.5163.147) and ridiculous cobbled-together paths like /about-us/1-2-3-to-the-zoo/the-tiny-seed/10-little-rubber-ducks/1-2-3-to-the-zoo/the-tiny-seed/the-nonsense-show/slowly-slowly-slowly-said-the-sloth/the-boastful-fisherman/the-boastful-fisherman/brown-bear-brown-bear-what-do-you-see/the-boastful-fisherman/brown-bear-brown-bear-what-do-you-see/brown-bear-brown-bear-what-do-you-see/pancakes-pancakes/pancakes-pancakes/the-tiny-seed/pancakes-pancakes/pancakes-pancakes/slowly-slowly-slowly-said-the-sloth/the-tiny-seed(I just put together a bunch of Eric Carle titles as an example. The actual paths are pasted together from valid paths on our server but in invalid order, with as many as 32 subdirectories.)Has anyone else been seeing this and do you have an idea what's behind it?<a href="https://infosec.exchange/tags/botnet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#botnet</a> <a href="https://infosec.exchange/tags/ddos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ddos</a> <a href="https://infosec.exchange/tags/webscraping" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#webscraping</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Dissent Doe :cupofcoffee:So apart from the attempt to open a lot of Facebook accounts using my domain, my site has also been under sporadic DDoS attacks. I hope you don't have too much trouble connecting at times. And no, I have no idea who I ticked off now. 😂 <a href="https://infosec.exchange/tags/DDoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DDoS</a>

Erik C. ThauvinDNS Attacks – Explained<a href="https://mastodon.social/tags/ddos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ddos</a> <a href="https://mastodon.social/tags/dns" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dns</a> <a href="https://mastodon.social/tags/java" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#java</a><a href="https://svenruppert.com/2025/04/07/dns-attacks-explained/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://svenruppert.com/2025/04/07/dns-attacks-explained/</a>

Haack’s NetworkingManaging AI Bots+ w/ Apache MPM, FPM, & Fail2Ban: <a href="https://tech.haacksnetworking.org/2025/04/06/managing-ai-bots-w-apache-mpm-fpm-fail2ban/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://tech.haacksnetworking.org/2025/04/06/managing-ai-bots-w-apache-mpm-fpm-fail2ban/</a> There's been a lot of continued discussion on this topic, so I decided to investigate some of the common reports, compare those to my own hardware, theoretical ceilings and caps, and then adjusted my LAMP stack and fail2ban as per this blog entry. Let me know what yall think or if you find any errors or questionable claims. -oemb1905 <a href="https://gnulinux.social/tags/ai" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ai</a> <a href="https://gnulinux.social/tags/scraping" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#scraping</a> <a href="https://gnulinux.social/tags/apache" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#apache</a> <a href="https://gnulinux.social/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a> <a href="https://gnulinux.social/tags/freesoftware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#freesoftware</a> <a href="https://gnulinux.social/tags/floss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#floss</a> <a href="https://gnulinux.social/tags/ddos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ddos</a> <a href="https://gnulinux.social/tags/php" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#php</a>

Venkatesh-Prasad RanganathAn interesting code hosting related downside of AI. <a href="https://mastodon.social/tags/ai" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ai</a> <a href="https://mastodon.social/tags/ddos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ddos</a> <a href="https://mastodon.social/tags/web" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#web</a> <a href="https://mastodon.social/tags/scraping" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#scraping</a> <a href="https://mastodon.social/tags/copyright" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#copyright</a> <a href="https://mastodon.social/tags/code" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#code</a><a href="https://techcrunch.com/2025/03/27/open-source-devs-are-fighting-ai-crawlers-with-cleverness-and-vengeance/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://techcrunch.com/2025/03/27/open-source-devs-are-fighting-ai-crawlers-with-cleverness-and-vengeance/</a>

The New OilAfter <a href="https://mastodon.thenewoil.org/tags/DDOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DDOS</a> attacks, <a href="https://mastodon.thenewoil.org/tags/Blizzard" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Blizzard</a> rolls back Hardcore <a href="https://mastodon.thenewoil.org/tags/WoW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WoW</a> deaths for the first time<a href="https://arstechnica.com/gaming/2025/03/not-so-permadeath-blizzard-revives-hardcore-wow-characters-killed-by-ddos-attacks/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://arstechnica.com/gaming/2025/03/not-so-permadeath-blizzard-revives-hardcore-wow-characters-killed-by-ddos-attacks/</a><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

AlexPersonally I don't mind my code being ingested to train <a href="https://mastodon.org.uk/tags/LLM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LLM</a> models. Freedoms 1 and 3 of the four essential software freedoms allow for study and redistribution of modified versions of code. Of course those freedoms don't allow for stripping the license obligations from derivative code. They also don't give permission to for <a href="https://mastodon.org.uk/tags/scraper" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#scraper</a> bots to <a href="https://mastodon.org.uk/tags/DDoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DDoS</a> our core development infrastructure by aggressively spamming git servers with requests: <a href="https://thelibre.news/foss-infrastructure-is-under-attack-by-ai-companies/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://thelibre.news/foss-infrastructure-is-under-attack-by-ai-companies/</a> <a href="https://mastodon.org.uk/tags/git" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#git</a> <a href="https://mastodon.org.uk/tags/floss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#floss</a> <a href="https://mastodon.org.uk/tags/foss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#foss</a> <a href="https://mastodon.org.uk/tags/robots" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#robots</a>

IT NewsDevs say AI crawlers dominate traffic, forcing blocks on entire countries - Software developer Xe Iaso reached a breaking point earlier this year when... - <a href="https://arstechnica.com/ai/2025/03/devs-say-ai-crawlers-dominate-traffic-forcing-blocks-on-entire-countries/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://arstechnica.com/ai/2025/03/devs-say-ai-crawlers-dominate-traffic-forcing-blocks-on-entire-countries/</a> <a href="https://schleuss.online/tags/machinelearning" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#machinelearning</a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#biz</a>⁢ <a href="https://schleuss.online/tags/ddos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ddos</a> <a href="https://schleuss.online/tags/ai" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ai</a>

Veronica Olsen 🏳️‍🌈🇳🇴🌻Who could have guessed that an industry whose entire business model is based on theft would behave like malware attacks on the Internet? 🤔<a href="https://arstechnica.com/ai/2025/03/devs-say-ai-crawlers-dominate-traffic-forcing-blocks-on-entire-countries/?utm_source=mastodon&utm_medium=social" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://arstechnica.com/ai/2025/03/devs-say-ai-crawlers-dominate-traffic-forcing-blocks-on-entire-countries/?utm_source=mastodon&utm_medium=social</a><a href="https://mastodon.online/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> <a href="https://mastodon.online/tags/DDoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DDoS</a> <a href="https://mastodon.online/tags/Crawlers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Crawlers</a>

Rob PomeroyDrayTek routers in the UK (and to a lesser extent elsewhere) are having A Bad Weekend. Lots of "spontaneous" reboots.Also, DrayTek's UK website is unreachable. So this looks like a concerted attack.Details are patchy, but ISP Review is tracking the problem: <a href="https://www.ispreview.co.uk/index.php/2025/03/broadband-isps-report-uk-connectivity-problems-with-vulnerable-draytek-routers.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.ispreview.co.uk/index.php/2025/03/broadband-isps-report-uk-connectivity-problems-with-vulnerable-draytek-routers.html</a>Applying firmware upgrades and disabling VPN services will help. Search your networks for indicators of compromise.<a href="https://infosec.exchange/tags/DrayTek" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DrayTek</a> <a href="https://infosec.exchange/tags/Outage" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Outage</a> <a href="https://infosec.exchange/tags/DDoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DDoS</a> <a href="https://infosec.exchange/tags/CVE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE</a>

jbz🌐 LLM crawlers continue to DDoS SourceHut | sr_ht status｢ SourceHut continues to face disruptions due to aggressive LLM crawlers. We are continuously working to deploy mitigations. We have deployed a number of mitigations which are keeping the problem contained for now. However, some of our mitigations may impact end-users ｣<a href="https://status.sr.ht/issues/2025-03-17-git.sr.ht-llms/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://status.sr.ht/issues/2025-03-17-git.sr.ht-llms/</a><a href="https://indieweb.social/tags/sourcehut" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sourcehut</a> <a href="https://indieweb.social/tags/ddos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ddos</a> <a href="https://indieweb.social/tags/aiscraping" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#aiscraping</a>

Dendrobatus AzureusArtificial intelligence companies are creating incredibly large scale denial of service situations on the infrastructure of Open Source Networks.Now Network owners need to waste time on Finding ways of sending All These requests of the rogue AI insects to /dev/null<a href="https://fuzzies.wtf/@altbot" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@altbot</a> <a href="https://mastodon.bsd.cafe/tags/DDoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DDoS</a> <a href="https://mastodon.bsd.cafe/tags/DenialOfService" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DenialOfService</a> <a href="https://mastodon.bsd.cafe/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> <a href="https://mastodon.bsd.cafe/tags/LLM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LLM</a> <a href="https://mastodon.bsd.cafe/tags/KDE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#KDE</a> <a href="https://mastodon.bsd.cafe/tags/crawler" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#crawler</a> <a href="https://mastodon.bsd.cafe/tags/programming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#programming</a> <a href="https://mastodon.bsd.cafe/tags/Alibaba" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Alibaba</a> <a href="https://mastodon.bsd.cafe/tags/IP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IP</a> <a href="https://mastodon.bsd.cafe/tags/FOSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FOSS</a> <a href="https://mastodon.bsd.cafe/tags/attack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#attack</a> <a href="https://mastodon.bsd.cafe/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSource</a> <a href="https://thelibre.news/foss-infrastructure-is-under-attack-by-ai-companies/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://thelibre.news/foss-infrastructure-is-under-attack-by-ai-companies/</a>

Recent searches

Search options

Administered by:

Server stats:

#ddos