Win-DoS’ Zero-Click Exploit Could Weaponize Windows Infrastructure for DDoS Attacks

Threat Score:

GB Hackers

2 days ago

Part of cluster #1833

Overview

Win-DoS’ Zero-Click Exploit Could Weaponize Windows Infrastructure for DDoS Attacks Security researchers have uncovered a “zero-click” denial-of-service chain that can silently turn thousands ofMicrosoft Windows Domain Controllers (DCs)into a globe-spanning botnet, raising fresh alarms in a year already defined by record-breaking distributed-denial-of-service (DDoS) activity. DDoS attacks climbed 56% year-over-year in late-2024 according to Gcore’s latest Radar report, and Cloudflare’s network h...

Continue Reading on Original Site

5 articles

Xerox patches critical vulnerability in FreeFlow Core application

Cybersecurity Dive • 5 hours ago

Researchers at Horizon3.ai discovered the flaw after flagging unusual behavior in a customer environment.

Score

Patch Now: Attackers Target OT Networks via Critical RCE Flaw

Dark Reading • 4 hours ago

Researchers observed exploitation attempts against a vulnerability with a CVSS score of 10 in a popular Erlang-based platform for critical infrastructure and OT development.

Score

The MedusaLocker ransomware gang is hiring penetration testers

Graham Cluley • 6 hours ago

MedusaLocker, the ransomware-as-a-service group that has been active since 2019 is openly recruiting for penetration testers to help it compromise more businesses. in my article on the Fortra blog.

Score

US Authorities Seize $1m from BlackSuit Ransomware Group

Infosecurity Magazine • 11 hours ago

The US Department of Justice has announced the seizure of domains, servers and $1m in proceeds from the BlackSuit ransomware group

Score

Stop Reacting; Start Anticipating: The Global State of Threat Intelligence

Brighttalk • 5 hours ago

Presented by Jitin Shabadu, Forrester Analyst | Jayce Nichols, Director, Intelligence Solutions, Google Threat Intelligence Group

Score

ATTACK TYPES

Distributed Denial of Service

Lateral Movement

Phishing

Remote Procedure Call Attack

INDUSTRIES

Cybersecurity

Education

Information Technology

VULNERABILITIES

DDoS

Denial of Service

DoS

RCE

Remote Code Execution

COMPANIES

AMD

Adobe

Amazon

Apple

Cisco

SECURITY VENDORS

Cloudflare

SafeBreach

PLATFORMS

AWS

Android

Apache

Azure

IIS

APT GROUPS

UAC-0099

RANSOMWARE

AnDROid

Blind

One

Zlader

globe

MITRE ATT&CK

Phishing

T1055

T1059

T1190

T1203

MALWARE

Dark

Globe

Industroyer

CVES

CVE-2025-26673

CVE-2025-32724

CVE-2025-49113

CVE-2025-49716

ARTICLE INFORMATION

Article #10559

Published 2 days ago

GB Hackers

THREAT HUNTING

THREAT INTELLIGENCE

BUSINESS INTELLIGENCE

Save to Folder

Article Intelligence

THREAT HUNTING

THREAT INTELLIGENCE

BUSINESS INTELLIGENCE

Overview

Related Articles

Xerox patches critical vulnerability in FreeFlow Core application

Patch Now: Attackers Target OT Networks via Critical RCE Flaw

The MedusaLocker ransomware gang is hiring penetration testers

US Authorities Seize $1m from BlackSuit Ransomware Group

Stop Reacting; Start Anticipating: The Global State of Threat Intelligence

Save to Folder

Article Intelligence

We use cookies

Cookie Settings

Essential Cookies

Analytics Cookies

Performance Cookies

Marketing Cookies