Security News > 2022 > October > Fodcha DDoS botnet reaches 1Tbps in power, injects ransoms in packets
A new version of the Fodcha DDoS botnet has emerged, featuring ransom demands injected into packets and new features to evade detection of its infrastructure.
The most notable improvement in this botnet version is the delivery of ransom demands directly within DDoS packets used against victims' networks.
As a DDoS operation, Fodcha had grown significantly since April, when it targeted an average of 100 victims daily.
Netlab's analysts believe Fodcha is making money by renting its firepower to other threat actors who wish to launch DDoS attacks.
Based on DDoS packets deciphered by Netlab, Fodcha now demands the payment of 10 XMR from victims, worth approximately $1,500.
These demands are embedded in the 'Data' portion of the botnet's DDoS packets and warn that the attacks will continue unless a payment is made.
News URL
Related news
- Mirai Botnet Variant Exploits Four-Faith Router Vulnerability for DDoS Attacks (source)
- Mirai Botnet Launches Record 5.6 Tbps DDoS Attack with 13,000+ IoT Devices (source)
- Hackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS Botnet (source)
- Mirai botnet behind the largest DDoS attack to date (source)
- New Aquabot Botnet Exploits CVE-2024-41710 in Mitel Phones for DDoS Attacks (source)