Cybersecurity experts have discovered a botnet — a network of compromised routers — that uses misconfigured DNS records to bypass email protection systems to send malware through spam campaigns. Comprising around 13,000 MikroTik routers, the botnet uses various types of cyberattacks, including DDoS attacks, data theft, and cryptojacking. The attackers impersonated DHL and spoofed legitimate sender domains due to issues with SPF records. To protect against these threats, experts recommend regularly monitoring DNS records and email traffic, user education, and regular system penetration testing.
The NCSC wants developers to get serious on software security
The NCSC’s new Software Security Code of Practice has been praised by cyber professionals as a significant advancement in enhancing software supply chain security.
