Scammers managed to create a botnet from infected Linux servers that is able to send floods to websites and other systems with at least 150Gbps traffic junk.
Το XOR Distributed Denial of Service (DDoS) botnet πραγματοποιεί 20 επιθέσεις την ημέρα, σύμφωνα με την Akamai. Το 90% αυτών των επιθέσεων από τους υπολογιστές που έχουν μολυνθεί από κακόβουλο software held in companies based in Asia. The most frequent target is gaming websites, and the next is educational institutions.
Botnet malware installs a backdoor into the systems and can handle them. Initially, attackers get root access by doing brute-force on the system's SSH service.
Once he has managed to gain root, they use his privileges to run a bash shell script which downloads and executes the malware.
Hackers can then use the compromised systems as a platform DDoS attacks to flood targets with either SYN garbage or DNS traffic. THE address The bot's IP is spoofed, but not always, according to Akamai.
The bandwidth of DDoS attacks reaches 179Gbps! To understand the size, the larger DDoS attacks that have been recorded reach the 400Gbps.
More information on the threat, removing malware from your computers, and reducing DDoS can be found on the Akamai page.