Security News > 2022 > October > Fodcha DDoS botnet reaches 1Tbps in power, injects ransoms in packets
A new version of the Fodcha DDoS botnet has emerged, featuring ransom demands injected into packets and new features to evade detection of its infrastructure.
The most notable improvement in this botnet version is the delivery of ransom demands directly within DDoS packets used against victims' networks.
As a DDoS operation, Fodcha had grown significantly since April, when it targeted an average of 100 victims daily.
Netlab's analysts believe Fodcha is making money by renting its firepower to other threat actors who wish to launch DDoS attacks.
Based on DDoS packets deciphered by Netlab, Fodcha now demands the payment of 10 XMR from victims, worth approximately $1,500.
These demands are embedded in the 'Data' portion of the botnet's DDoS packets and warn that the attacks will continue unless a payment is made.