Cybersecurity experts have discovered a botnet — a network of compromised routers — that uses misconfigured DNS records to bypass email protection systems to send malware through spam campaigns. Comprising around 13,000 MikroTik routers, the botnet uses various types of cyberattacks, including DDoS attacks, data theft, and cryptojacking. The attackers impersonated DHL and spoofed legitimate sender domains due to issues with SPF records. To protect against these threats, experts recommend regularly monitoring DNS records and email traffic, user education, and regular system penetration testing.

New KoiLoader Abuses Powershell Scripts to Deliver Malicious Payload
Researchers have uncovered a new strain of the advanced KoiLoader malware, believed to be distributed through phishing emails posing as bank statements. The malware employs