BE ON THE LOOKOUT FOR BOTNETS USA

One thing that the confused response to Russians at War makes clear is that eight years after the revelation that Moscow attempted to influence a U.S. presidential election, most Westerners still don’t really know how Russian propaganda campaigns work. Americans have become familiar with AI botnets, salaried trolls tweeting in broken English about Texas secession, deranged Russian TV hosts calling for a nuclear strike on New York, and alt-right has-beens. But what to make of a French and Canadian documentary, tucked between Pharrell’s Lego-animated film and a Q&A with Zoe Saldaña, that seems cozy with the Russian military and blurs the line between entertainment and politics?

...

Since the start of the full-scale invasion of Ukraine, Russian propaganda has churned out absurd and repulsive lies, such as that Ukraine has biolabs where NATO scientists are working on a virus that targets Slavic DNA, and that Zelensky, who is Jewish, presides over a neo-Nazi regime. Yet, in a way, it has become honest with itself—at least for the domestic audience. There’s no longer a need for platforms like Russia.ru or The Journal, because the message is clear: This is who we are, and you’re either with us or against us. And yet, the entertainment aspect didn’t disappear.

...

One reason Russian propaganda is running circles around the West is that the internet was one of the few domains where the Russian state arrived late, forcing it to co-opt those who understood it. RuNet, the Russian segment of the World Wide Web, was created—and run—by people like Rykov: artsy 20-somethings, filled with cynicism, post-Soviet disillusionment, and a cyberpunk mentality. The collapse of the Soviet Union taught them that truth was whatever they wanted it to be, and that survival was the ultimate goal. The advertising executives, philosophy students, and creatives who once made video art, lewd calendars, and scandalous zines are the same minds who in 2016 said, “Let’s make memes about Hillary Clinton,” and in 2024 suggested using AI to flood X with believable comments. In many ways, this confrontation mirrors what’s happening in Ukraine: This time, however, the West is the massive, unwieldy force being outsmarted by a smaller, more tech-savvy adversary.

The good news is that the Kremlin is a graveyard of talent. In time, every gifted person I knew who went behind its brick walls was devoured by deceit, paranoia, and fear of losing one’s place in the sun. Konstantin Rykov was exceptional at his job, so much so that the Kremlin offered him a seat in the Russian Parliament when he was just 28. He accepted the offer. But being a member of the Duma Committee on Science and High Technologies and the Committee for Support in the Field of Electronic Media wasn’t the same as being the editor of fuck.ru. Despite being involved in some foreign influence operations, Rykov, now 45, hasn’t produced any significant work for Russian audiences since he joined Parliament.

Asked by an audience member in Toronto whether Russia was responsible for the war in Ukraine, Trofimova replied, “I think there are a lot of other factors involved. Yeah, like they are definitely sending troops in to solve whatever grievances there are.” Even if it wasn’t financed by Moscow, Russians at War reminds me of a Rykov production: slick, scandalous, and with a ton of free press. The message the film conveys is that war, not the country that started it, is bad in this scenario. Trofimova seems to portray Russia’s invasion of Ukraine, and the astonishing scale of the atrocities it has committed there, as something impersonal and inexorable, like a tsunami: We can only accept it and sympathize with the victims, including Russian soldiers.

Author: CrimethInc. Topic: technology

“The future is already here,” Cyberpunk pioneer William Gibson once said; “it’s just not very evenly distributed.” Over the intervening decades, many people have repurposed that quote to suit their needs. Today, in that tradition, we might refine it thus: War is already here—it’s just not very evenly distributed.

Never again will the battlefield be just state versus state; it hasn’t been for some time. Nor are we seeing simple conflicts that pit a state versus a unitary insurgent that aspires to statehood. Today’s wars feature belligerents of all shapes and sizes: states (allied and non-allied), religious zealots (with or without a state), local and expatriate insurgents, loyalists to former or failing or neighboring regimes, individuals with a political mission or personal agenda, and agents of chaos who benefit from the instability of war itself. Anyone or any group of any size can go to war.

The increased accessibility of the technology of disruption and war[1] means the barrier to entry is getting lower all the time. The structure of future wars will sometimes feel familiar, as men with guns murder children and bombs level entire neighborhoods—but it will take new forms, too. Combatants will manipulate markets and devalue currencies. Websites will be subject to DDoS attacks and disabling—both by adversaries and by ruling governments. Infrastructure and services like hospitals, banks, transit systems, and HVAC systems will all be vulnerable to attacks and interruptions.

In this chaotic world, in which new and increasing threats ceaselessly menace our freedom, technology has become an essential battlefield. Here at the CrimethInc. technology desk, we will intervene in the discourse and distribution of technological know-how in hopes of enabling readers like you to defend and expand your autonomy. Let’s take a glance at the terrain.

Privacy

The NSA listens to, reads, and records everything that happens on the internet.

Amazon, Google, and Apple are always listening[2] and sending some amount[3] of what they hear back to their corporate data centers[4]. Cops want that data. Uber, Lyft, Waze, Tesla, Apple, Google, and Facebook know your whereabouts and your movements all of the time. Employees spy on users.

Police[5] want access to the contents of your phone, computer, and social media accounts—whether you’re a suspected criminal, a dissident on a watch list, or an ex-wife.

The business model of most tech companies is surveillance capitalism. Companies learn everything possible about you when you use their free app or website, then sell your data to governments, police, and advertisers. There’s even a company named Palantir, after the crystal ball in The Lord of the Rings that the wizard Saruman used to gaze upon Mordor—through which Mordor gazed into Saruman and corrupted him.[6] Nietzsche’s famous quote, “When you look long into an abyss, the abyss also looks into you,” now sounds like a double transcription error: surely he didn’t mean abyss, but app.

Security

Self-replicating malware spreads across Internet of Things (IoT) devices like “smart” light bulbs and nanny cams, conscripting them into massive botnets. The people who remotely control the malware then use these light bulbs and security cameras to launch debilitating DDoS[7] attacks against DNS providers, reporters, and entire countries.

Hackers use ransomware to hold colleges, hospitals, and transit systems hostage. Everything leaks, from nude photos on celebrities’ phones to the emails of US political parties.

Capital

Eight billionaires combined own as much wealth as the poorest 50% of the world’s population. Four of those eight billionaires are tech company founders.[8] Recently, the President of the United States gathered a group of executives to increase collaboration between the tech industry and the government.[9]

The tech industry in general, and the Silicon Valley in particular, has a disproportionately large cultural influence. The tech industry is fundamentally tied to liberalism and therefore to capitalism. Even the most left-leaning technologists aren’t interested in addressing the drawbacks of the social order that has concentrated so much power in their hands.[10]

War

Nation states are already engaging in cyber warfare. Someone somewhere[11] has been learning how to take down the internet.

Tech companies are best positioned to create a registry of Muslims and other targeted groups. Even if George W. Bush and Barack Obama hadn’t already created such lists and deported millions of people, if Donald Trump (or any president) wanted to create a registry for roundups and deportations, all he’d have to do is go to Facebook. Facebook knows everything about you.

The Obama administration built the largest surveillance infrastructure ever—Donald Trump’s administration just inherited it. Liberal democracies and fascist autocracies share the same love affair with surveillance. As liberalism collapses, the rise of autocracy coincides with the greatest technical capacity for spying in history, with the least cost or effort. It’s a perfect storm.

This brief overview doesn’t even mention artificial intelligence (AI), machine learning, virtual reality (VR), augmented reality (AR), robots, the venture capital system, or tech billionaires who think they can live forever with transfusions of the blood of young people.

Here at the tech desk, we’ll examine technology and its effects from an anarchist perspective. We’ll publish accessible guides and overviews on topics like encryption, operational security, and how to strengthen your defenses for everyday life and street battles. We’ll zoom out to explore the relation between technology, the state, and capitalism—and a whole lot more. Stay tuned.

Footnotes

[1] A surplus of AK-47s. Tanks left behind by U.S. military. Malware infected networked computer transformed into DDoS botnets. Off the shelf ready to execute scripts to attack servers.

[2] Amazon Echo / Alexa. Google with Google Home. Apple with Siri. Hey Siri, start playing music.

[3] What, how much, stored for how long, and accessible by whom are all unknown to the people using those services.

[4] Unless you are a very large company, “data center” means someone else’s computer sitting in someone else’s building.

[5] Local beat cops and police chiefs, TSA, Border Patrol, FBI… all the fuckers.

[6] Expect to read more about Palantir and others in a forthcoming article about surveillance capitalism.

[7] Distributed Denial of Service. More on this in a later article, as well.

[8] Bill Gates, Jeff Bezos, Mark Zuckerberg, Larry Ellison. In fact, if you count Michael Bloomberg as a technology company, that makes five.

[9] In attendance: Eric Trump. Brad Smith, Microsoft president and chief legal officer. Jeff Bezos, Amazon founder and CEO. Larry Page, Google founder and Alphabet CEO. Sheryl Sandberg, Facebook COO. Mike Pence. Donald Trump. Peter Thiel, venture capitalist. Tim Cook, Apple CEO. Safra Catz, Oracle CEO. Elon Musk, Tesla CEO. Gary Cohn, Goldman Sachs president and Trump’s chief economic adviser. Wilbur Ross, Trump’s commerce secretary pick. Stephen Miller, senior policy adviser. Satya Nadella, Microsoft CEO. Ginni Rometty, IBM CEO. Chuck Robbins, Cisco CEO. Jared Kushner, investor and Trump’s son-in-law. Reince Priebus, chairman of the Republican National Committee and White House chief of staff. Steve Bannon, chief strategist to Trump. Eric Schmidt, Alphabet president. Alex Karp, Palantir CEO. Brian Krzanich, Intel CEO.

[10] We’ll explore this more in a later article about “The California Ideology.”

[11] Probably a state-level actor such as Russia or China.

2024: A Year In Review

2024 was certainly a year we can all go home and reflect upon. It had its ups, its downs, its utter stupidity, and its signs that augur a much worse 2025. But hey, there are probably some bright spots too.

As the 2020s have finally crystallized into their own cultural identity there's plenty to like and dislike. I hope I don't have to end up eating these words but I kinda feel like this past year was where we hit "Peak Internet" in a lot of ways as AI and botnets have really degraded a lot of the subculture. Being part of that Millennial boom of early adopters it kinda feels like we finally "got grandma online" and everyone regrets that but it pushed a lot of us to move on and remember the real world is cool too. Now we're watching as an upcoming generation and our elders slog through this bastardized version of the platforms until they too realize sitting around staring at a steady drip of ragebait is no way to live a life.

With that dreary assessment out of the way, let's have a proper best of to highlight the bright spots in pop culture, or at least the ones I liked:

Album of the Year: Beyonce - Cowboy Carter

If nothing else, great year for music! And I mean that. Pretty much every major (American) genre had a lot going for it. Except for rock, they're free to get over this weird, middle-aged dad whining about cancel culture era anytime now. There were a lot of ways I could take this. Kendrick Lamar's fiery output was great for hip-hop and Chappell Roan finally breaking into the mainstream were both worthy. But even if I haven't really been the biggest Beyonce fan since her Destiny's Child days this was a great album and one that kept itself in the conversation throughout the year despite being an early release.

Being honest, the griping from country music fans to me. If some little blonde white girl released a song like Texas Holdem it'd be a generational hit on those charts, which had plenty of washed-up white rappers from the last decade getting a crossover hit on. Which is especially funny when Beyonce actually does have more of a "country" background than most of what's coming out of Nashville. And I noticed a lot of country fans around me sure seemed to like Cowboy Carter in the few weeks before it became trendy to hate, but who really cares? In my experience country tends to have a brief mainstream moment when pop culture doesn't really know what it wants, and that sorta defines 2024 for me. This was a great album I was bopping to all year.

Movie of the Year: Anora

Yeah I'll be a bit of a weirdo here because I didn't really hear much about this one. But it was a pleasant surprise when me and sweetie went to see it. Excellent comedy about a stripper who marries a wealthy foreign fuckboy and how everything falls apart when his parents find out.

What really helped Anora stand out to me was the choice to tell a story about a largely Eastern European cast. Gave everything a sort of Crazy Rich Asians vibe but for Russians in Brooklyn. Was it anything truly groundbreaking in cinema? No, but what we got was a funny and well-made story centered around very human characters who were all believable. And it was nice seeing something a little more grounded when most trips to the theater recently seem to be focused on big, grandiose productions. Not necessarily a bad thing, but I do hope we're winding down the era of bigger and grander remakes and rehashes and getting to some more original films in coming years so I'll give Anora the bump in the hopes it's a sign of future trends. Especially if like with Everything, Everywhere All At Once I end up having a solid hunch about something that'll get a lot of attention come this year's award season.

Anime/Manga of the Year - Frieren: Beyond Journey's End

I know it started in 2023 but it finished this year and I saw it this year. Frieren was amazing. You probably don't need me to tell you that. But I cannot say enough good things about this series starting with my absolute love for something so utterly unique. Fantasy story about the ancient elf mage's journey's after the evil Demon King has fallen. The premise alone is worth attention but the execution is where it excels. I make it a point to not give a lot of 10/10s on my anime lists but this one was an instant classic and the only criticism I can level is the art being a little weak in the manga but the anime picks it up so well. Cannot wait to see more of this come to life. If you still haven't taken the plunge my God what are you waiting for?

TV Show of the Year: Shogun

I mean, "TV show" is kind of an arbitrary category these days but you know what I mean. I didn't really watch a whole lot of domestic content because despite Frieren's massive lead over everything else we had a lot of great anime and the wide world of sports had a lot to offer as well. But I'm glad I got to see Shogun. Based on a novel about one of the first Europeans to arrive in closed-off Japan, this was just such an event all around. The way they used language to really capture how alienated our dear Anjin was excellent and the story was solid all around with some great action.

Meme of the Year: Raygun

Sports were fun this year. The Olympics were not part of that. I kinda wish we could just forget the entire thing happened, especially the absolutely ugly attitude towards Imane Khelif in boxing. Fuckers so desperate for trans women dominating sports they have to make up examples, glad she won in the end. And you know what best sums up my entire attitude towards this Olympiad? This bitch. No disrespect to breakdancing because it's cool as hell but it never should have been an Olympic event to begin with and it was all made a lot worse with this whack-ass white lady my age fudging the criteria for getting a spot and making an utter ass out of herself in front of an international audience.

But if there's some silver lining, in a year where a lot of stories were very charged and nasty...at least this was stupid fun we all agreed was worthy of mockery. Hitting that kangaroo move was always good for a laugh.

AI & Art

No matter how much progress, AI cannot acquire consciousness. Cannot awaken to sentience. AI remains a tool that humans prompt. Should an AI act with agency, self-moving and autonomous, then a human trained it to act this way. Should it act maliciously, it would resemble a virus or botnet; botnets have no consciousness.

No matter how advanced, AI cannot replace human creativity. AI creations consist of sampled and recycled forms, arranged in ways to satisfy the prompt. No matter how pleasing the results, the prompter must live with the fact that whatever he wanted to express the machine produced by using the expressions of others.

And the absolute limitation of AI: When a human being creates a piece of art, he usually does so with the intention to communicate something, the soul of a work that gave birth to the forms it used to express itself. With no consciousness or will, AI cannot put intent behind a work. The ultimate state of soullessness.

To simulate a self, does not create a Self.

AI Powering MAGA Botnet Confused by Trump's Connections to Epstein, Starts Contradicting Itself

AI Powering MAGA Botnet Confused by Trump's Connections to Epstein, Starts Contradicting Itself

Unlock the Secrets of Ethical Hacking! Ready to dive into the world of offensive security? This course gives you the Black Hat hacker’s perspective, teaching you attack techniques to defend against malicious activity. Learn to hack Android and Windows systems, create undetectable malware and ransomware, and even master spoofing techniques. Start your first hack in just one hour! Enroll now and…

favorite kind of malware ? (feel free to yap as much as you want)

YAY OK

so so my fav kind is definitely computer worms. basically, a computer worm replicates itself without needing a host program (since all they need is exponential growth to spread). its also the fastest spreading kind of malware out there due to the exponential growth. they dont need user interference to spread. and i think thats super cool.

most worms are only made to spread and not to modify files or systems a computer had. but the Morris and Mydoom worms are “payload-free” and showed that worms can cause major disruptions by increasing network traffic among other things. they can be programmed to do pretty much anything through a malicious payload, e.g ExploreZip.

worms can have have a backdoor, aka a way for the worm’s author to control it. networks of of these machines are often called botnets which are very commonly used for things like DoS (denial-of-service) attacks and sending spam. some worms are made to target industrial systems (Stuxnet is a good example of this).

my fav kind of computer worm is Mydoom. it was first spotted on January 26, 2004, and it targeted computers running Microsoft Windows. it became the fastest spreading email worm to exist, and its record, as of 2025, still has yet to be surpassed. it spread through junk emails and the worms message said “Andy; I’m just doing my job, nothing personal, sorry”, which led to many people believing the creator was paid. many security firms believe the worm originated from a programmer in Russia, but the original author has never been identified. the worm was in the format of a poorly written email, which made people think it was just spam, and they ignored it. it eventually spread to over 500,000 computers across the world. early on, people speculated the worm was to perpetrate a DDoS (distributed-denial-of-service) attack against the SCO Group. 25% of Mydoom.A infected hosts flooded SCO Group with a bunch of traffic. Mydoom was named by Craig Schmugar, an employee of McAfee. He chose the name due to seeing “mydom” in a line of code. he noted that "It was evident early on that this would be very big. I thought having 'doom' in the name would be appropriate.” there were two main versions, Mydoom.A and Mydoom.B. Mydoom.A carried two payloads, one payload held a backdoor for remote control over the computer, and the other payload held a DDoS attack against the SCO Group’s website that was timed to happen on February 1, 2004. Later testing revealed that the DDoS only worked in about 25% of infected systems. Mydoom.B carried the same payloads but also targeted Microsoft’s website (preventing access) and popular antivirus software by modifying the hosts file, blocking updates and virus removal tools for the software. the few copies of .B suggests Microsoft suffered few effects.

on February 9, 2004, Doomjuice, a “parasitic” worm began spreading. it used the backdoor left behind by Mydoom to spread and didnt affect non-infected computers. its payload, just like Mydoom.B’s, was a DDoS attack against Microsoft.

February 12, 2004 is when Mydoom.A was programmed to stop spreading, but its backdoor stayed open. March 1, 2004, is when Mydoom.B was programmed to stop spreading, but its payload also stayed open.

September 23, 2004 is when Mydoom versions .U, .V, .W, and .X appeared. they sparked worries that a more powerful version of the worm was being made.

February 18, 2005 is when Mydoom version .AO appeared.

Circa July 2009 is when Mydoom resurfaced in the US and South Korea 2009 cyberattacks.

How To Recognize A Trojan Horse: Your Guide to Digital Security

In the ever-evolving landscape of cyber threats, understanding the dangers lurking online is paramount. One of the most insidious forms of malware is the Trojan Horse. Named after the ancient Greek myth, a Trojan Horse program disguises itself as legitimate software, tricking users into installing it, only to unleash malicious activities once inside your system.

This article will guide you through the tell-tale signs of a Trojan Horse infection, how they spread, and crucial steps you can take for prevention and removal.

What Exactly is a Trojan Horse?

A Trojan Horse, often simply called a "Trojan," is a type of malicious software (malware) that appears to be a legitimate, harmless program. Unlike viruses, Trojans do not self-replicate by infecting other files. Instead, they rely on social engineering to trick users into executing them.

Once activated, they can perform a variety of harmful actions, such as:

Creating Backdoors: Allowing remote access to your computer.

Stealing Data: Harvesting sensitive information like passwords, credit card details, and personal files.

Spying: Monitoring your online activities.

Launching Attacks: Using your computer as part of a botnet for DDoS attacks.

Deleting or Modifying Files: Causing data loss or system instability.

Common Signs Your Computer Might Be Infected with a Trojan Horse

Recognizing a Trojan Horse can be challenging because they are designed to be stealthy. However, several symptoms can indicate an infection. Pay close attention to the following:

1. Slow Computer Performance

One of the most noticeable signs is a significant slowdown in your computer's overall performance. This includes:

Applications taking longer to load.

Frequent system freezes or crashes.

General sluggishness when navigating your operating system.

Your hard drive constantly working, even when you're not actively using resource-intensive programs.

2. Unusual Pop-ups and Advertisements

If you're suddenly bombarded with an excessive number of pop-up ads, even when you're not browsing the internet, or if your browser redirects you to unfamiliar websites, it could be a sign of adware bundled with a Trojan.

3. Unfamiliar Programs or Icons

Check your desktop, taskbar, and program list for any new applications or icons you don't recognize or didn't intentionally install. Trojans often install additional malicious software without your consent.

4. Changes to Your Browser Settings

A Trojan can hijack your web browser, leading to:

A changed homepage you can't revert.

A different default search engine.

New toolbars or extensions you didn't add.

Frequent redirects to suspicious websites.

5. Increased Network Activity

If your internet connection seems unusually active, even when you're not downloading or streaming, a Trojan might be sending data from your computer or participating in a botnet. You can check your network activity in your operating system's task manager or resource monitor.

6. Disabled Security Software

Some Trojans are designed to disable or interfere with your antivirus software, firewall, or other security programs to avoid detection and removal. If you find your security software is not running or can't be updated, be highly suspicious.

7. Files Missing or Encrypted

While more common with ransomware (a type of Trojan), if you notice important files are missing, corrupted, or suddenly encrypted and inaccessible, it's a serious sign of malware.

8. Frequent System Crashes (Blue Screen of Death)

Regular and inexplicable system crashes, often accompanied by a "Blue Screen of Death" (BSOD) on Windows, can indicate deep-seated malware interfering with your operating system's core functions.

How Trojan Horses Are Delivered

Trojans typically rely on deception to infiltrate your system. Common delivery methods include:

Phishing Emails: Emails that appear to be from legitimate sources (banks, shipping companies, social media) but contain malicious attachments or links.

Malicious Websites: Visiting compromised or fake websites that automatically download malware onto your system (drive-by downloads) or trick you into downloading "updates" or "plugins."

Bundled Software: Free software downloads from unofficial sources often come bundled with Trojans or other unwanted programs.

Fake Software Updates: Pop-ups or emails prompting you to update your browser, Flash Player, or other common software, which are actually fake and contain malware.

P2P File Sharing: Downloading pirated software, movies, or music from peer-to-peer networks can expose you to infected files.

Prevention is Your Best Defense

Proactive measures are key to protecting yourself from Trojan Horses:

Use Reputable Antivirus Software: Install and keep up-to-date, comprehensive antivirus and anti-malware software. Schedule regular scans.

Keep Your Software Updated: Enable automatic updates for your operating system, web browser, and all other applications. Software updates often include critical security patches.

Be Wary of Suspicious Emails: Never open attachments or click links from unknown senders. Always verify the sender's email address and be suspicious of urgent or unusual requests.

Download from Official Sources: Only download software, apps, and files from official, trusted websites and app stores. Avoid third-party download sites.

Use a Firewall: A firewall monitors incoming and outgoing network traffic and can block unauthorized access to your computer.

Back Up Your Data: Regularly back up your important files to an external drive or cloud service. This can save you from data loss in case of an infection.

Educate Yourself: Stay informed about the latest cyber threats and common social engineering tactics.

What To Do If You Suspect a Trojan Horse Infection

If you notice any of the signs mentioned above, act quickly:

Disconnect from the Internet: Immediately disconnect your computer from the internet (unplug Ethernet cable or disable Wi-Fi) to prevent the Trojan from communicating with its command and control server or spreading further.

Boot into Safe Mode: Restart your computer and boot into Safe Mode (with Networking, if necessary, for updates). This loads only essential programs, making it easier to remove malware.

Run a Full Antivirus Scan: Use your updated antivirus software to perform a deep, full system scan. Allow it to quarantine or remove any detected threats.

Use a Second Opinion Scanner: Consider running a scan with a different anti-malware tool (e.g., Malwarebytes) to catch anything your primary antivirus might have missed.

Change All Passwords: Once your system is clean, change all your important passwords (email, banking, social media, etc.) from a secure, uninfected device.

Monitor Your Accounts: Keep a close eye on your bank accounts, credit card statements, and online accounts for any suspicious activity.

Consider a Clean Install: In severe cases, or if you can't completely remove the Trojan, a clean reinstallation of your operating system might be the safest option, though it will erase all data.

Conclusion

Trojan Horses are a persistent threat in the digital world, but by understanding their nature and recognizing the warning signs, you can significantly reduce your risk of infection. Vigilance, combined with robust security practices, is your strongest defense against these deceptive forms of malware. Stay informed, stay cautious, and prioritize your digital security.

How Secure Are Internet of Things (IoT) Devices in 2025?

From smart homes anticipating your every need to industrial sensors optimizing manufacturing lines, Internet of Things (IoT) devices have seamlessly integrated into our lives, promising unparalleled convenience and efficiency. In 2025, are these interconnected gadgets truly secure, or are they opening up a Pandora's Box of vulnerabilities?

The truth is, IoT security is a complex and often concerning landscape. While significant progress is being made by some manufacturers and regulatory bodies, many IoT devices still pose substantial risks, largely due to a race to market that often prioritizes features and cost over robust security.

The Allure vs. The Alarms: Why IoT Devices Are Often Vulnerable

The promise of IoT is immense: automation, data-driven insights, remote control. The peril, however, lies in how easily these devices can become entry points for cyberattacks, leading to privacy breaches, network compromise, and even physical harm.

Here's why many IoT devices remain a security headache:

Weak Default Credentials & Lack of Updates:

The Problem: Many devices are still shipped with easily guessable default usernames and passwords (e.g., "admin/admin," "user/123456"). Even worse, many users never change them. This is the single easiest way for attackers to gain access.

The Challenge: Unlike smartphones or laptops, many IoT devices lack clear, robust, or frequent firmware update mechanisms. Cheaper devices often receive no security patches at all after purchase, leaving critical vulnerabilities unaddressed for their entire lifespan.

Insecure Network Services & Open Ports:

The Problem: Devices sometimes come with unnecessary network services enabled or ports left open to the internet, creating direct pathways for attackers. Poorly configured remote access features are a common culprit.

The Impact: Remember the Mirai botnet? It famously exploited vulnerable IoT devices with open ports and default credentials to launch massive Distributed Denial of Service (DDoS) attacks.

Lack of Encryption (Data In Transit & At Rest):

The Problem: Data transmitted between the device, its mobile app, and the cloud often lacks proper encryption, making it vulnerable to eavesdropping (Man-in-the-Middle attacks). Sensitive data stored directly on the device itself may also be unencrypted.

The Risk: Imagine your smart speaker conversations, security camera footage, or even health data from a wearable being intercepted or accessed.

Insecure Hardware & Physical Tampering:

The Problem: Many IoT devices are designed with minimal physical security. Easily accessible debug ports (like JTAG or UART) or lack of tamper-resistant enclosures can allow attackers to extract sensitive data (like firmware or encryption keys) directly from the device.

The Threat: With physical access, an attacker can potentially rewrite firmware, bypass security controls, or extract confidential information.

Vulnerabilities in Accompanying Apps & Cloud APIs:

The Problem: The web interfaces, mobile applications, and cloud APIs used to control IoT devices are often susceptible to common web vulnerabilities like SQL Injection, Cross-Site Scripting (XSS), or insecure authentication.

The Loophole: Even if the device itself is somewhat secure, a flaw in the control app or cloud backend can compromise the entire ecosystem.

Insufficient Privacy Protections:

The Problem: Many IoT devices collect vast amounts of personal and sensitive data (e.g., location, habits, biometrics) without always providing clear consent mechanisms or robust data handling policies. This data might then be shared with third parties.

The Concern: Beyond direct attacks, the sheer volume of personal data collected raises significant privacy concerns, especially if it falls into the wrong hands.

Supply Chain Risks:

The Problem: Vulnerabilities can be introduced at any stage of the complex IoT supply chain, from compromised components to insecure firmware inserted during manufacturing.

The Fallout: A single compromised component can affect thousands or millions of devices, as seen with some supply chain attacks in the broader tech industry.

The Elephant in the Room: Why Securing IoT is Hard

Diversity & Scale: The sheer number and variety of IoT devices (from tiny sensors to complex industrial machines) make a "one-size-fits-all" security solution impossible.

Resource Constraints: Many devices are low-power, low-cost, or battery-operated, limiting the computational resources available for robust encryption or security features.

Long Lifespans: Unlike phones, many IoT devices are expected to operate for years, even decades, long after manufacturers might cease providing support or updates.

Patching Complexity: Pushing updates to millions of geographically dispersed devices, sometimes with limited connectivity, is a logistical nightmare.

Consumer Awareness: Many consumers prioritize convenience and price over security, often unaware of the risks they introduce into their homes and networks.

Towards a More Secure IoT in 2025: Your Shield & Their Responsibility

While the challenges are significant, there's a collective effort towards a more secure IoT future. Here's what needs to happen and what you can do:

For Manufacturers (Their Responsibility):

Security by Design: Integrate security into the entire product development lifecycle from day one, rather than as an afterthought.

Secure Defaults: Ship devices with unique, strong, and randomly generated default passwords.

Robust Update Mechanisms: Implement easy-to-use, automatic, and regular firmware updates throughout the device's lifecycle.

Clear End-of-Life Policies: Communicate transparently when support and security updates for a device will cease.

Secure APIs: Design secure application programming interfaces (APIs) for cloud communication and mobile app control.

Adhere to Standards: Actively participate in and adopt industry security standards (e.g., ETSI EN 303 645, IoT Security Foundation guidelines, PSA Certified). Regulatory pushes in Europe (like the Cyber Resilience Act) and elsewhere are driving this.

For Consumers & Businesses (Your Shield):

Change Default Passwords IMMEDIATELY: This is your absolute first line of defense. Make them strong and unique.

Network Segmentation: Isolate your IoT devices on a separate Wi-Fi network (a "guest" network or a VLAN if your router supports it). This prevents a compromised IoT device from accessing your main computers and sensitive data.

Keep Firmware Updated: Regularly check for and apply firmware updates for all your smart devices. If a device doesn't offer updates, reconsider its use.

Disable Unused Features: Turn off any unnecessary ports, services, or features on your IoT devices to reduce their attack surface.

Research Before You Buy: Choose reputable brands with a track record of security and clear privacy policies. Read reviews and look for security certifications.

Strong Wi-Fi Security: Ensure your home Wi-Fi uses WPA2 or, ideally, WPA3 encryption with a strong, unique password.

Be Mindful of Data Collected: Understand what data your devices are collecting and how it's being used. If the privacy policy isn't clear or feels invasive, reconsider the device.

Physical Security: Secure physical access to your devices where possible, preventing easy tampering.

Regular Monitoring (for Businesses): Implement tools and processes to monitor network traffic from IoT devices for unusual or suspicious activity.

In 2025, the convenience offered by IoT devices is undeniable. However, their security is not a given. It's a shared responsibility that demands both diligence from manufacturers to build secure products and vigilance from users to deploy and manage them safely.

15 Types of Malware Everyone Should Know About

In today’s digital world, our devices are more connected than ever. While this makes life easier, it also means more opportunities for cybercriminals to attack. One of the biggest online threats is malware. But what is malware? And how can you stay safe from it?

In this blog, we’ll explain 15 different types of malware in simple terms. We’ll also show you how using tools like CoverMeVPN can help protect your personal information and keep you safe online.

What Is Malware?

Malware is short for malicious software. It’s any program or file created to harm your computer, steal your information, or take control of your device without your permission. Cybercriminals use malware to cause problems for people, businesses, and even governments.

Let’s look at the most common types of malware you should watch out for.

The 15 Main Types of Malware

1. Virus

A virus attaches itself to a file or program. When you open that file, the virus spreads to other files on your device. Viruses can damage data, slow down your system, or even delete important files.

Example: A harmful file downloaded from a suspicious email.

Worm

A worm spreads by itself through a network. It doesn't need you to open a file or click a link. Worms often slow down computers and networks by using up resources.

Example: A worm might spread through email contacts and send copies of itself to others.

Trojan Horse

A Trojan horse, or Trojan, looks like a normal file or app. But when you open it, it installs malware secretly. Trojans are often used to steal personal data or give hackers control of your device.

Example: A free online game that secretly steals your passwords.

Ransomware

Ransomware locks your files and demands money to unlock them. It usually asks for payment in cryptocurrency, like Bitcoin.

Example: The famous WannaCry ransomware attack in 2017 affected thousands of companies around the world.

Spyware

Spyware secretly gathers information about you. It can track your keystrokes, watch the websites you visit, and record your passwords.

Example: A program that steals your online banking details while you type.

Adware

Adware shows unwanted ads on your screen. Some adware also collects information about your browsing habits without your permission.

Example: Pop-up ads that appear even when you’re not using your browser.

Rootkit

A rootkit hides deep in your system and allows hackers to control your computer remotely. It’s very hard to detect.

Example: A hacker secretly turning on your webcam.

Keylogger

A keylogger records every key you press. It captures passwords, messages, and credit card numbers.

Example: A hidden program that sends everything you type to a hacker.

Botnet

A botnet is a group of infected computers controlled by a hacker. These computers, called bots, work together to perform tasks like sending spam emails or attacking websites.

Example: A hacker using thousands of infected computers to crash a website.

Fileless Malware

Fileless malware doesn’t install any files. It uses existing programs on your computer to perform harmful tasks, making it hard for antivirus programs to find.

Example: Malware that uses system tools like PowerShell to steal data.

Logic Bomb

A logic bomb is hidden in a program and only activates when certain conditions are met, like a specific date or event.

Example: A malicious code set to delete files on April 1st.

Mobile Malware

Mobile malware attacks smartphones and tablets. It can steal data, track your location, or send premium-rate messages.

Example: A fake mobile app that quietly spies on you.

Scareware

Scareware tricks you by displaying fake virus warnings. It tries to scare you into buying fake software or services.

Example: A pop-up claiming “Your system is infected! Download now!”

Rogue Security Software

A form of scareware, rogue security software pretends to be a real antivirus program. It shows fake alerts and asks you to pay for a solution to problems that don’t exist.

Example: A program claiming you have 500 viruses when your device is clean.

Malvertising

Malvertising uses online ads to spread malware. Even trusted websites can display infected ads without knowing it.

Example: Clicking an ad promising a free prize, which installs malware.

How to Stay Safe from Malware

Staying safe online doesn’t have to be complicated. A few simple habits can protect you from most malware threats:

Always keep your software updated.

Don’t click on suspicious links or attachments.

Use strong, unique passwords for every account.

Backup your important files regularly.

Install reliable antivirus software.

Avoid downloading apps or files from unknown sources.

And here’s a powerful tool to add to your defense:

🌐 Protect Your Privacy with CoverMeVPN

One of the best ways to stay safe online is by using a VPN (Virtual Private Network). A VPN hides your IP address and encrypts your internet connection, making it much harder for hackers to target you.

We recommend CoverMeVPN, a trusted and secure VPN service that shields your online activity from prying eyes. It prevents malware from tracking your location and protects your personal information, especially when using public Wi-Fi networks.

Whether you’re working from home, traveling, or just browsing at a coffee shop, CoverMeVPN adds an extra layer of safety between you and the internet.

Why CoverMeVPN?

Keeps your identity and data private.

Protects you on public Wi-Fi.

Blocks dangerous websites.

Easy to use and fast.

Final Thoughts

Malware comes in many forms, and it’s more common than most people realize. From viruses and worms to ransomware and spyware, these digital threats can cause serious problems. The good news is that by learning about malware and taking simple steps to stay safe, you can avoid most attacks.

Make sure to use strong passwords, avoid suspicious links, and always keep your devices up to date. And for even stronger protection, consider using a VPN like CoverMeVPN to keep your online life private and secure.

By being careful and staying informed, you can enjoy the internet safely without falling victim to malware.

Not sure on the specifics of this attack but very often botnets will utilize reflection attacks, which abuses a standard network protocol by exploiting its behavior in a way that costs the victim device far more resources than it does the malicious device. An example is when a bot opens a communication channel between itself and the victim - this normally takes the same resources on each side, and the connection is normally politely terminated by both devices, which frees the resources. You can instead initiate a connection like normal, then discard the connection without informing the other partner, causing the other partner to keep their resources tied up for the entire timeout period. If you do that a thousand times, you’ll have used 1000 seconds of your own network time, and 30000 seconds of your victims network time. You can see how even an extremely low powered device can launch a successful attack on an enterprise server, especially when there’s a lot of them at play coming in from IPs all over the world.

According to a recent report published by the Aargauer Zeitung (h/t Golem.de), around three million smart toothbrushes have been infected by hackers and enslaved into botnets.

The most cyberpunk thing on your dash today.

hi is this a copypasta of yours? https://www.tumblr.com/whitemoonselena6b4t/778200951997825024/either-they-claim-to-be-spiritually-enlightened

lowk freaking out because I feel like I've seen all of the tags on this exact post and the post itself and specifically that addition from *your* blog before

please tell me im not living in botnet wtf

No, I just re-blogged that with my own comment. It's basically a type of original post and comment which I have made before though, though that's probably why it seems familiar.

First of all, if you’ve made it to 2018 without becoming intimately familiar with the ins, outs, ups and mostly downs of DDoS attacks then congratulations are in order. You have been lucky indeed. As it tends to go with the internet and devastating cyber attacks, however, that luck can run out in an instant and before you know it you’re Googling ‘what is the DDoS attack?’ and ‘why is my life so bad?’ Maybe you should take a look at the answers to these DDoS-related questions and head off any desperation searches. What Exactly Is A DDoS Attack? Here is the basic DDoS definition: a DDoS attack is a distributed denial of service attack, a form of cyber attack that uses the power of a network of hijacked devices to aim a thundering amount of malicious traffic at a target website or online service in the hopes of overloading the server or other network infrastructure to take the target offline or at least slow it way down. That network of hijacked devices is commonly referred to as a botnet, and botnets are built by infecting devices like computers, tablets or Internet of Things (IoT) gadgets with malware that allow them to be controlled remotely. How Common Are These Attacks? You’ve probably heard of the record-breaking distributed denial of service attacks, like the one on the Dyn DNS server that took Netflix, Spotify, Twitter and other major services offline, or the one that stopped trains in Sweden, but rest assured that even if you’re not reading about them regularly, DDoS attacks are doing major damage daily. In a survey of 1,010 organizations, Neustar found that 84% had been subject to at least one DDoS attack in a 12-month period. A further 86% of that 84% were targeted multiple times. What Happens When An Attack Is Successful? As touched on above, the goal of a DDoS attack is usually to take a website offline or slow it down so much it’s not worth using. This is how distributed denial of service attacks…deny services. For a website that gets hit, the immediate consequences of a DDoS attack are the frustration felt by users, the bad publicity that’s generated when those users take to social media to vent and lost revenue for transactions that can’t be completed during an outage. Not to mention the cost of fighting an attack for an inadequately protected website, which can ring in anywhere from $20,000 to $100,000 per hour for larger organizations. The consequences keep on coming when that initial user frustration understandably turns into a distrust of a website’s ability to protect itself and its users and leads to a loss of user loyalty. Additionally, according to the Neustar study linked above, 47% of organizations hit with a DDoS attack discovered virus activity on their networks following the attack, 43% found malware had been activated, and a staggering 32% suffered customer data theft. Apropos of all that, how do I protect my website from distributed denial of service attacks? With professional protection. Whether you pay an up-charge to your ISP for DDoS mitigation or you invest in a scalable cloud-based mitigation solution with either on-demand or always-on activation, granular traffic inspection for identifying attack traffic, and a robust scrubbing server that can keep attack traffic from ever reaching the network while allowing legitimate traffic through unfettered, the bottom line is that the professionals need to handle it. DDoS is not a DIY situation. I don’t have a website or online service, so I don’t really need to care, right? You probably realize this is a leading question and the answer is no. There are two main reasons every internet user needs to care. The first is that DDoS attacks on websites and services you use can very much affect you. Not only will DDoS-caused outages deny you your services, but since DDoS attacks are often used alongside data breach and intrusion attempts, your personal information could be at stake. The second reason you need to care is that you could be contributing to the distributed denial of service epidemic with your internet-connected devices.

Computers and tablets are at risk of being hijacked by botnet builders, and IoT devices are even more at risk thanks to their lax security. If you’re a default username and password type of person, there’s a good chance you’ve got at least one device in a botnet. To help prevent your devices from being enlisted into a havoc-causing botnet (or from suffering other hacks or intrusions,) use anti-malware solutions on computers, tablets, and phones and change those default usernames and passwords on IoT devices. Physically disconnecting and then reconnecting devices from their power source before changing passwords helps erase malware from device memory. Disabling universal plug and play support on devices to make them undiscoverable by the internet, and keeping devices updated and patched are also important steps to take. Knowledge Is Power It isn’t pleasant knowing the details of some of the worst cyber-assaults being leveraged against websites, online services, and internet users, but between professional attackers, DDoS-for-hire enthusiasts and botnet builders, DDoS attacks is a topic that no longer leaves any room for blissful ignorance. If the choice is between learning about distributed denial of service attacks or later posting the best depression memes on your social media accounts to reflect your feelings after a successful attack, the choice is hopefully obvious.

According to Think Teal, there are four foundational pillars for successful Hybrid Work Models. They are

Highly Secure Environment

Enhanced Employee Experience & Inclusivity

Anytime, Anyplace Work Flexibility

Improved & Sustainable Work Policies

All four are equally important and require expertise to manage and maintain. Security is a horizontal without which no enterprise tech discussion is possible. The exhibit indicates that there are different threat vectors when we think about data security. They could be external or internal; they need not always be intentional. However, any lapse in data security has always had repercussions for business, not just financial losses but also brand reputation. And then there are compliance issues to deal with.

According to a recent research report by Ponemon Institute, the average cost of a data breach increased by 2.6% from $ 4.24 Mn in 2021 to $4.35 in 2022. It had risen by 12.7% in the 2020 report, a direct indication of the impact of hybrid work on data breaches.

While there are umpteen solutions available, choosing the right solution becomes a problem in itself!

Some of the trends that are prevalent in the cybersecurity market are:

AI-powered Cyber Security – AI makes its position dominant in the security market. Like the financial services sector, where AI has helped in tackling frauds, similarly with AI, organizations can tackle security threats more intelligently by going through billions of data points to identify threat patterns.

Securing “always on” IoT eco-system – As more organizations deploy IoT at scale, challenges around data protection are also emerging, like unencrypted data storage, botnets and malicious IoT devices.

Privacy and Security – As we go ahead, we will see compliance and security being more interwoven than before. Issues related to privacy and GDPR compliance, among other things, will push many organizations to look at security from a different lens.

Attacks beyond the perimeter – With hybrid work a de facto standard, greater use of cloud and interconnected supply chains have led to many new exposure areas, a combination of physical and digital security postures. know more...

In a recent cyber attack, over 400,000 Linux servers have been compromised by hackers for cryptotheft and financial gain. This massive breach has raised concerns about the security of online transactions and personal data. Experts are advising users to take necessary precautions and update their security measures to protect themselves from similar attacks in the future. Click to Claim Latest Airdrop for FREE Claim in 15 seconds Scroll Down to End of This Post const downloadBtn = document.getElementById('download-btn'); const timerBtn = document.getElementById('timer-btn'); const downloadLinkBtn = document.getElementById('download-link-btn'); downloadBtn.addEventListener('click', () => downloadBtn.style.display = 'none'; timerBtn.style.display = 'block'; let timeLeft = 15; const timerInterval = setInterval(() => if (timeLeft === 0) clearInterval(timerInterval); timerBtn.style.display = 'none'; downloadLinkBtn.style.display = 'inline-block'; // Add your download functionality here console.log('Download started!'); else timerBtn.textContent = `Claim in $timeLeft seconds`; timeLeft--; , 1000); ); Win Up To 93% Of Your Trades With The World's #1 Most Profitable Trading Indicators [ad_1] A recent report from ESET Research sheds light on a sophisticated server-side malware campaign that continues to grow, compromising hundreds of thousands of servers. What started as the Operation Windigo campaign ten years ago, focusing on Linux malware for financial gain, has now evolved into a multifaceted operation targeting credit card and cryptocurrency theft. Despite efforts to combat Ebury, the main malware used in this campaign, its operators have shown resilience and adaptability. The arrest of one perpetrator did not deter the botnet's expansion, with Ebury being consistently updated over the years. ESET's honeypots have been crucial in tracking new samples and indicators, even though the malware has become increasingly complex and challenging to detect. Working closely with the Dutch National High Tech Crime Unit (NHTCU), ESET uncovered new methods used by the Ebury gang to compromise servers, including leveraging hosting providers' infrastructure and intercepting SSH traffic within data centers. Their tactics have resulted in the compromise of over 400,000 servers since 2009, with more than 100,000 still being compromised as of late 2023. Aside from Ebury, the gang has deployed multiple malware families to exploit the compromised servers further, targeting financial details and cryptocurrency wallets. Updates to the Ebury malware itself, including new obfuscation techniques and a userland rootkit for hiding, make detection even more challenging. For those concerned about potential compromise, ESET's latest paper provides in-depth technical details and indicators of compromise. Additionally, ESET Research offers private APT intelligence reports and data feeds for organizations seeking advanced threat intelligence. To learn more about Ebury's ongoing threat and how to protect against it, access the full report from ESET Research or reach out to [email protected] for further inquiries. Stay informed and stay vigilant against evolving cyber threats. Win Up To 93% Of Your Trades With The World's #1 Most Profitable Trading Indicators [ad_2] 1. What is cryptotheft and how does it affect Linux servers? Cryptotheft is when hackers steal cryptocurrency from servers, compromising their security and potentially causing financial losses. 2. How many Linux servers were compromised for cryptotheft recently? Approximately 400,000 Linux servers were compromised for cryptotheft and financial gain. 3. What steps can be taken to protect Linux servers from cryptotheft? Some steps to protect Linux servers from cryptotheft include updating software, using strong passwords, and implementing security measures like firewalls.

4. What kind of financial gain do hackers typically aim for when compromising Linux servers for cryptotheft? Hackers aim to steal cryptocurrency and other valuable assets from compromised Linux servers, which they can then sell or use for financial gain. 5. Who is responsible for investigating and preventing incidents of cryptotheft on Linux servers? IT security teams and cybersecurity experts are responsible for investigating and preventing incidents of cryptotheft on Linux servers, working to secure systems and mitigate risks. Win Up To 93% Of Your Trades With The World's #1 Most Profitable Trading Indicators [ad_1] Win Up To 93% Of Your Trades With The World's #1 Most Profitable Trading Indicators Claim Airdrop now Searching FREE Airdrops 20 seconds Sorry There is No FREE Airdrops Available now. Please visit Later function claimAirdrop() document.getElementById('claim-button').style.display = 'none'; document.getElementById('timer-container').style.display = 'block'; let countdownTimer = 20; const countdownInterval = setInterval(function() document.getElementById('countdown').textContent = countdownTimer; countdownTimer--; if (countdownTimer < 0) clearInterval(countdownInterval); document.getElementById('timer-container').style.display = 'none'; document.getElementById('sorry-button').style.display = 'block'; , 1000);