News Insights: New Roboto botnet emerges targeting Linux servers running Webmin | ZDNet
New Roboto botnet emerges targeting Linux servers running Webmin | ZDNet
The botnet’s main function is the ability to conduct DDoS attacks, a feature it has not used yet. According to Netlab researchers, a cybercrime group is enslaving Linux servers running vulnerable Webmin apps into a new botnet that they have named “Roboto.” Its appearance dates back to summer and is linked to the disclosure of a major security flaw in a web app installed on more than 215,000 servers https://www.zdnet.com/article/new-roboto-botnet-emerges-targeting-linux-servers-running-webmin/
News Insights:
Amir Shaked, VP of R&D at PerimeterX, provided the following comments:
“Once established, botnets are often used as a proxy to conduct attacks. It’s very common for them to be rented out, as part of the cybercrime-as-a-service economy, for DDoS as well as other attacks like credential stuffing and crypto-mining. The rate at which these botnets grow means attacks will only be more distributed and harder to identify and protect against. To best protect themselves, businesses need to think about these hybrid threats, as these botnets provide a wide range of access points from residential origins and can’t be easily blocked.”
Hugh Taylor
Hugh Taylor is a Certified Information Security Manager (CISM). In addition to editing Journal of Cyber Policy, he writes about cybersecurity, compliance and enterprise technology for such clients as Microsoft, IBM, SAP, HPE, Oracle, Google and Advanced Micro Devices. Prior to launching his freelance writing career, he served in executive roles at Microsoft, IBM and several venture-backed technology startups.