SecurityWeek

RondoDox Botnet Exploiting React2Shell Vulnerability

December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.
The Hacker News

RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers

RondoDox botnet exploits the React2Shell vulnerability in Next.js, with over 90,000 exposed systems used to deploy miners and ...

RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...
PCMag on MSN

Aisuru botnet launches record-breaking 29.7 Tbps DDoS attack

The attack tops the 22 Tbps assault from September. Cloudflare also estimates that the Aisuru botnet has grown to span 1 to 4 million infected devices globally.
SecurityWeek

‘Kimwolf’ Android Botnet Ensnares 1.8 Million Devices

Consisting of over 1.8 million infected devices, the Kimwolf Android Botnet focuses on traffic proxying, but can also launch ...
SiliconANGLE

Botnets leverage decade-old D-Link vulnerabilities in new attack campaigns

A new report out today from Fortinet Inc.’s FortiGuard Labs details the activities of two different botnets observed through October and November that are being spread through vulnerabilities in ...