Ethical Hacking News
A new Mirai-based IoT botnet, dubbed Aisuru, has launched record-breaking DDoS attacks exceeding 20Tb/sec. The botnet's use of residential proxies and diversified attack vectors make it a significant threat to online gaming platforms and broadband providers.
A new Mirai-based IoT botnet called Aisuru has been discovered, capable of launching massive DDoS attacks exceeding 20Tb/sec.The botnet uses residential proxies to reflect HTTPS DDoS attacks, making it challenging to detect and mitigate.It targets consumer routers, CCTV/DVRs, and other vulnerable devices for its operations.The botnet carries out various illicit activities, including credential stuffing, AI-driven web scraping, spamming, and phishing.A comprehensive defense strategy is needed to combat Aisuru and related IoT botnets.
A recent report by Netscout has revealed that a new Mirai-based IoT botnet, dubbed Aisuru, has been instrumental in launching massive Distributed Denial of Service (DDoS) attacks exceeding 20Tb/sec. The botnet has garnered significant attention from cybersecurity professionals due to its devastating impact on various online gaming platforms and broadband providers.
The Aisuru botnet is a variant of the popular TurboMirai-class IoT botnets, which have been known for their exceptional DDoS capabilities. According to Netscout, the Aisuru botnet uses residential proxies to reflect HTTPS DDoS attacks, making it even more challenging to detect and mitigate. The botnet's nodes are primarily composed of consumer routers, CCTV/DVRs, and other vulnerable Critical Point of Entry (CPE) devices.
The botnet has been found to use a combination of UDP, TCP, and GRE floods with medium-sized packets and randomized ports/flags. This approach allows the attackers to overwhelm networks and cause significant disruptions in broadband services. The attacks have also been observed to cause router line card failures due to the high volume of traffic.
One notable aspect of the Aisuru botnet is its ability to carry out various illicit activities, including credential stuffing, artificial intelligence (AI)-driven web scraping, spamming, and phishing. This highlights the broader threat landscape posed by IoT botnets, which can be used for a wide range of malicious purposes beyond traditional DDoS attacks.
The report emphasizes the importance of comprehensive defense strategies that incorporate intelligent systems for targeted suppression, infrastructure-based methods like Flowspec or S/RTBH, and proactive remediation of abusable CPE devices. It also stresses the need for network operators to monitor all edges, customer, peering, and large endpoint networks for inbound and outbound DDoS traffic.
Furthermore, the report notes that Aisuru and related TurboMirai-class IoT botnets have launched attacks exceeding 20Tb/sec and 4gpps, primarily targeting online gaming activities. The use of this level of bandwidth highlights the increasing sophistication and scale of modern DDoS attacks.
To combat these threats, it is essential for organizations to stay vigilant and continually update their security protocols to address emerging vulnerabilities. This includes implementing robust defense mechanisms against IoT botnets like Aisuru, as well as investing in advanced threat detection systems.
In conclusion, the Aisuru botnet serves as a stark reminder of the evolving threat landscape posed by Mirai-based IoT botnets. As these threats continue to grow and evolve, it is crucial for organizations and individuals to remain proactive in their cybersecurity efforts and stay informed about emerging trends and vulnerabilities.
Related Information:
https://www.ethicalhackingnews.com/articles/Aisuru-Botnet-Behind-Record-20Tbsec-DDoS-Attacks-and-a-Wake-Up-Call-for-Cybersecurity-ehn.shtml
https://securityaffairs.com/183969/malware/aisuru-botnet-is-behind-record-20tb-sec-ddos-attacks.html
Published: Tue Oct 28 18:37:14 2025 by llama3.2 3B Q4_K_M
