DDoS Threats & Security Attacks: DDoS Reports & Cyber Security Threats

Over the past several months, Radware has observed a significant increase in DDoS activity across the globe and has been rapidly onboarding new customers in distress. These attacks have ranged from cases of hacktivism in Europe and the Middle East to Terabit DDoS attacks in Asia and the United States.

May 25, 2022 11:31 AM Threat Alert

OpsBedil is replacing the now-defunct Anonymous operations known as OpIsrael. The new operations are conducted by DragonForce Malaysia and its affiliates throughout Southeast Asia, specifically Malaysia and Indonesia. The current operation, OpsBedilReloaded, is a political response to events that occurred in Israel on April 11, 2022.

April 19, 2022 12:32 PM Threat Alert

On March 29, 2022, a remote code execution (RCE) in Spring Cloud Function was disclosed by Spring, a VMWare subsidiary. The vulnerability, tracked as CVE-2022-22963, was fixed at disclosure with the release of Spring Cloud Function 3.1.7 and 3.2.3. The disclosure came closely after another remote code execution vulnerability (CVE-2022-22947) in Spring Cloud Gateway that was patched earlier in March in versions 3.1.1 and 3.0.7 and higher of Spring Cloud Gateway.

April 1, 2022 02:54 PM Threat Alert

In this special advisory, Radware shares a collection of public information regarding threats and attacks surrounding the Kremlin’s special military action against Ukraine. Information is based on recent developments online, influenced by, and in support of the offline conflict.

February 28, 2022 12:15 PM Threat Alert

On December 9, the Apache Foundation released log4j version 2.15.0 as an emergency update for a critical vulnerability in the log4j2 library. The vulnerability could allow a remote attacker to execute arbitrary code on a system with software using the log4j2 Java library to log information and messages.

December 12, 2021 10:53 AM Vulnerability

Over the past several months, Radware researchers have been monitoring the ongoing evolution of the Mirai variant campaign known as Darvk.IoT. In August, we reported [1] that the operators behind the botnet had begun leveraging a vulnerability, CVE-2021-35395, in Realtek's SDK only a week after it was disclosed. This month, the operators of Dark.IoT integrated two new exploits in their most recent malware binaries.

September 21, 2021 02:09 PM Vulnerability

Over the past several months, Radware researchers have been monitoring the evolution of a Mirai variant we have named "Dark.IoT." On August 19, 2021, Radware researchers discovered updated binaries for this unnamed botnet showing the operators are preparing to leverage yet another supply chain vulnerability disclosed recently by IoT Inspectors Research Lab.

August 24, 2021 11:18 AM Vulnerability

During the month of May, increasing tensions in the Middle East resulted in renewed hacktivist operations throughout the region. The digital attacks in May presented a certain level of risk for unprotected sites as threat actors targeted organizations in the telecommunications, financial sectors and government agencies. At the moment, physical actions have deescalated in the region since the last incursion, but digital attacks have persisted into June. Cyber events in the Middle East have become reactionary over the past year; cases of hacktivism in the region typically follow physical or political confrontations.

July 13, 2021 01:05 PM Threat Alert