• Mylobot botnet infect (more than) 50,000 systems per day.

    Home » Forums » Cyber Security Information and Advisories » Code Red – Security/Privacy advisories » Mylobot botnet infect (more than) 50,000 systems per day.

    • This topic has 1 reply, 2 voices, and was last updated 1 year ago.
    Author
    Topic
    #2536534

    https://www.bitsight.com/blog/mylobot-investigating-proxy-botnet

    …We started sinkholing Mylobot in November 2018. At that time, Mylobot’s proxy sample contained a lot of hardcoded DGA domains, so we were able to observe the majority of the botnet. It had led us to a maximum of 250,000 unique daily infected machines in the beginning of 2020.

    Since the beginning of 2022, we’re not able to get infection telemetry from the latest Mylobot version as the sample doesn’t contain unregistered DGA domains anymore. Instead, we started monitoring Mylobot downloader’s domains and continue to see the evolution of Mylobot’s botnet.
    We are currently seeing more than 50,000 unique infected systems every day, but we believe we are only seeing part of the full botnet, which may lead to more than 150,000 infected computers as advertised by BHProxies’ operators…

    1 user thanked author for this post.
    Viewing 0 reply threads
    Author
    Replies
    Viewing 0 reply threads
    Reply To: Mylobot botnet infect (more than) 50,000 systems per day.

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information: