Kimwolf grew rapidly in the waning months of 2025 by tricking various “residential proxy” services into relaying malicious commands to devices on the local networks of those proxy endpoints.

The Kimwolf botnet compromised more than 2 million Android devices, turning them into residential proxies for DDoS attacks and traffic abuse.

Our first story of 2026 revealed how a destructive new botnet called Kimwolf has infected more than two million devices by mass-compromising a vast number of unofficial Android TV streaming boxes.

A recently disclosed vulnerability in the OneView program from Hewlett Packard Enterprise (HPE) has become the subject of a ...

Advances in artificial intelligence are creating a perfect storm for those seeking to spread disinformation at unprecedented ...

Telecommunications company Lumen successfully disrupted hundreds of command-and-control servers for the massive and resilient ...

Find out the common types of cyber extortion, the impacts of these incidents, and how to respond and prevent them in the ...

Malware control panels are supposed to be the hidden nerve centers of cybercrime, the place where intruders quietly manage stolen data, infected devices, and extortion campaigns. When those panels are ...

There can be little doubt that the Internet of Things (IoT) offers a wide range of benefits to both organisations and consumers – from automation and predictive maintenance in industry, to fitness ...

The threat actors behind the RondoDox botnet are among the latest attackers to take advantage of the React2Shell flaw, weaponizing the vulnerability as an initial access vector to deploy other ...

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js servers with malware and cryptominers. First documented by Fortinet in July ...

There are reports that a legitimate Microsoft email address—which Microsoft explicitly says customers should add to their ...