Matrix Unleashes A New Widespread DDoS Campaign
Essential information
- Published
- 27/11/2024 18:19
- Modified
- 27/11/2024 18:32
- Tags
- 2024-11-27 CVE-2014-8361 CVE-2017-17106 CVE-2017-17215 CVE-2017-18368 CVE-2018-10561 CVE-2018-10562 CVE-2018-9995 CVE-2022-30075 CVE-2022-30525 CVE-2024-27348 botnet brute-force cryptocurrency ddos discord discordgo iot mirai pybot script kiddie telegram vulnerability exploitation
- Related entities
- 11 vulnerabilities (cve), 12 observables, 1 intrusion sets (apt), 17 techniques (mitre), 3 malware, 4 others
Description
A new widespread Distributed Denial-of-Service (DDoS) campaign orchestrated by a threat actor named Matrix has been uncovered. The operation combines public scripts, brute-force attacks, and exploitation of weak credentials to create a botnet capable of global disruption. Matrix targets vulnerabilities and misconfigurations across internet-connected devices, particularly IoT and enterprise systems. The campaign demonstrates how accessible tools and minimal technical knowledge can enable large-scale cyberattacks. Despite showing Russian affiliation, the absence of Ukrainian targets suggests a focus on financial gain rather than political motives. The threat actor is actively targeting both development and production servers, marking an evolution in DDoS activities.