MyloBot Botnet Spreading Rapidly Worldwide: Infecting Over 50,000 Devices Daily

silversurfer · Feb 22, 2023

A sophisticated botnet known as MyloBot has compromised thousands of systems, with most of them located in India, the U.S., Indonesia, and Iran.

That's according to new findings from BitSight, which said it's "currently seeing more than 50,000 unique infected systems every day," down from a high of 250,000 unique hosts in 2020.

MyloBot is known to employ a multi-stage sequence to unpack and launch the bot malware. Notably, it also sits idle for 14 days before attempting to contact the command-and-control (C2) server to sidestep detection.

The primary function of the botnet is to establish a connection to a hard-coded C2 domain embedded within the malware and await further instructions.
"When Mylobot receives an instruction from the C2, it transforms the infected computer into a proxy," BitSight said. "The infected machine will be able to handle many connections and relay traffic sent through the command-and-control server."

MyloBot Botnet Spreading Rapidly Worldwide: Infecting Over 50,000 Devices Daily

New research has unveiled that a new botnet malware MyloBot is rapidly spreading and has already compromised thousands of systems.

thehackernews.com

Search

MyloBot Botnet Spreading Rapidly Worldwide: Infecting Over 50,000 Devices Daily

silversurfer

Level 85

MyloBot Botnet Spreading Rapidly Worldwide: Infecting Over 50,000 Devices Daily

Similar threads