Romanian hacker group DIICOT, previously known as Mexals, has been found to have added distributed denial of service (DDOS) attacks to its repertoire. The discovery was made by security researchers at Cado Security, who also identified that DIICOT uses the Cayosin Botnet, based on Mirai, to infect routers operating OpenWRT based on Linux.
The Cayosin Botnet has various modules for different types of attacks, including HTTP-flood, UDP-flood and SYN-Flood, making it a powerful tool for cybercriminals. DIICOT’s use of the botnet has allowed the group to conduct their own DDOS attacks for their purposes.
In addition to their newfound ability to carry out DDOS attacks, DIICOT has previously been linked to cryptomining and the sale of malicious software (Malware-AS-A-Service), highlighting their status as a significant threat in the cybercrime landscape.
The use of botnets such as Cayosin highlights the need for increased security measures to protect against DDOS attacks. As cybercriminals continue to develop new methods of attack, it is crucial for individuals and organizations to remain vigilant and take necessary precautions to safeguard their networks and systems.