The Most Powerful Ever? Inside the 11.5Tbps-Scale Mega Botnet AISURU
Sept. 25, 2025, 2:48 p.m.
Description
The AISURU botnet has emerged as a formidable threat, capable of launching massive DDoS attacks reaching 11.5 Tbps. First disclosed in 2024, it expanded significantly in 2025 by compromising a router firmware update server. The botnet, with approximately 300,000 nodes, is operated by a group of three key figures. It exploits various vulnerabilities, including 0-days, to propagate and has targeted multiple industries worldwide. AISURU employs sophisticated anti-analysis techniques, encryption methods, and a custom network protocol. Beyond DDoS attacks, it has expanded into proxy services, indicating a shift towards diversified cybercriminal activities. The botnet's scale and capabilities make it a significant concern for global cybersecurity.
Tags
Date
- Created: Sept. 25, 2025, 9:20 a.m.
- Published: Sept. 25, 2025, 9:20 a.m.
- Modified: Sept. 25, 2025, 2:48 p.m.
Indicators
- 90e3b997161e33c6485b48182073a864dd3d0775ab96cadbf1b7c9dd4821c6d1
- 7a5a5c813d636d96906fb4bf8f76c7f296a467dca756e92450f32dc69d781b71
- 08717d85a8a296279c2d2b792a33714d216a9de1950173d603222f78da9b9ca5
- 50d3806f47d3f701d5f1f93bf39f827f936e3d1f43fa2cd8408db9655d53fb83
- 201d872e05f45062f3b18f1cb2bca7d5fe3811e7e6d4b8616d565a011fba091d
- 151.242.2.25
- 151.242.2.22
- 185.211.78.117
- ilovegaysex.su
- approach.ilovegaysex.su
- updatetoto.tw