Network World

XSS flaw in popular video-sharing site enabled DDoS attack through visitors’ browsers

Attackers exploited a vulnerability in a popular video-sharing site to hijack users’ browsers for use in a large-scale distributed denial-of-service attack, according to researchers from Web security ...
Bleeping Computer

Hacked WordPress sites force visitors to DDoS Ukrainian targets

Hackers are compromising WordPress sites to insert a malicious script that uses visitors' browsers to perform distributed denial-of-service attacks on Ukrainian websites. Today, MalwareHunterTeam ...
Ars Technica

Archive.today CAPTCHA page executes DDoS; Wikipedia considers banning site

Wikipedia editors are discussing whether to blacklist Archive.today because the archive site was used to direct a distributed denial of service (DDoS) attack against a blogger who wrote a post in 2023 ...
Bleeping Computer

Log4shell exploits now used mostly for DDoS botnets, cryptominers

The Log4Shell vulnerabilities in the widely used Log4j software are still leveraged by threat actors today to deploy various malware payloads, including recruiting devices into DDoS botnets and for ...
CSOonline

DDoS attackers turning to simple ‘booter’ scripts, Prolexic warns

Internet criminals are sidestepping the need to launch DDoS attack from large networks of malware-compromised bot PCs by using simpler server ‘booter shells’, mitigation firm Prolexic has warned.
CSOonline

Hammer time? WikiLeaks-inspired Java script DDoS planned

The WikiLeaks weird fest continues, with Mastercard getting hammered some more this past weekend and a Java script-based DDoS being planned and launched through i-frame based images. Before I go any ...