A Mirai botnet has started exploiting CVE-2025-29635, a year-old command injection vulnerability in discontinued D-Link ...

China-linked actors hide attacks behind botnets of compromised home devices. Cyber defense grows more complex.

Cybersecurity agencies from the U.S., UK, and allied nations have issued a joint advisory warning that Chinese state-linked groups are hijacking home and office devices to build covert botnet networks ...

PowMix targets Czech workforce since Dec 2025 using jittered C2 and ZIP phishing, enabling stealthy remote access and ...

CVE-2024-3721 and CVE-2023-33538 exploited in TBK DVRs and EoL TP-Link routers, enabling Mirai variants and DDoS risk.

Almost every China-aligned threat actor is involved.

International cyber agencies are sounding the alarm that China-nexus hackers have quietly pivoted to a new playbook, turning ...

China's state-backed groups are now using covert networks of compromised devices to execute attacks in a low-cost, low-risk, ...

Hackers working for the Chinese government are increasingly hiding their attacks behind ready-made networks of hacked routers ...

FortiGuard Labs has identified a Mirai-based Nexcorium campaign actively exploiting CVE-2024-3721 in TBK DVR devices ...

A SystemBC proxy malware botnet of more than 1,570 hosts, believed to be corporate victims, has been discovered following an ...

A new Mirai-based malware campaign is actively exploiting CVE-2025-29635, a high-severity command-injection vulnerability ...