KrebsOnSecurity, a well-known cybersecurity blog, was hit by a massive DDoS attack peaking at 6.3 Tbps, originating from the Aisuru IoT botnet. The attack, believed to be a stress test, did not cause any data compromise or financial loss, and the site remained online thanks to Google’s Project Shield.
Source: https://hackread.com/krebsonsecurity-6-3-tbps-ddos-attack-aisuru-botnet/
TPRM report: https://scoringcyber.rankiteo.com/company/cybersecurity-risk-foundation
"id": "cyb511052325",
"linkid": "cybersecurity-risk-foundation",
"type": "Cyber Attack",
"date": "5/2025",
"severity": "25",
"impact": "",
"explanation": "Attack without any consequences: Attack in which data is not compromised"{'affected_entities': [{'industry': 'Media',
'name': 'KrebsOnSecurity',
'type': 'Cybersecurity Blog'}],
'attack_vector': 'Distributed Denial-of-Service (DDoS)',
'date_detected': '2025',
'description': 'KrebsOnSecurity, a well-known cybersecurity blog, was hit by '
'a massive DDoS attack peaking at 6.3 Tbps, believed to '
'originate from the Aisuru IoT botnet.',
'initial_access_broker': {'entry_point': 'Compromised IoT devices',
'high_value_targets': 'KrebsOnSecurity'},
'investigation_status': 'Ongoing',
'lessons_learned': 'Better security in internet-connected devices is needed '
'to prevent future similar attacks.',
'motivation': 'Stress-testing capabilities, showcasing power, or sending a '
'message',
'post_incident_analysis': {'root_causes': 'Vulnerabilities in consumer-grade '
'IoT devices'},
'recommendations': 'Manufacturers should take real steps to secure IoT '
'devices to prevent botnets from growing.',
'references': [{'source': 'KrebsOnSecurity'}, {'source': 'HackRead.com'}],
'response': {'third_party_assistance': 'Google’s Project Shield'},
'threat_actor': 'Aisuru Botnet',
'title': 'Massive DDoS Attack on KrebsOnSecurity',
'type': 'DDoS Attack',
'vulnerability_exploited': 'Compromised IoT devices (routers, IP cameras, '
'digital video recorders)'}