Security News > 2020 > April > Hoaxcalls Botnet Expands Targets List, DDoS Capabilities
The Hoaxcalls Internet of Things botnet has expanded the list of targeted devices and has added new distributed denial of service capabilities to its arsenal, DDoS protection services provider Radware reports.
The botnet was designed to launch DDoS attacks using UDP, DNS and HEX floods, based on commands received from its command and control server.
The botnet also added 16 new DDoS capabilities to the existing list, Radware's security researchers say.
This week, the security researchers also identified a new variant of the botnet that not only includes all of the 19 DDoS attack vectors, but also expands the list of targeted devices by attempting to exploit a vulnerability in ZyXEL Cloud CNM SecuManager.
"The campaigns performed by the actor or group behind XTC and Hoaxcalls include several variants using different combinations of propagation exploits and DDoS attack vectors. It is our opinion that the group behind this campaign is dedicated to finding and leveraging new exploits for the purpose of building a botnet that can be leveraged for large scale DDoS attacks," Radware notes.