Using an SSH credential brute-force attack, Go-based PumaBot is exploiting IoT devices everywhere
https://www.linux-magazine.com/Online/News/Go-Based-Botnet-Attacking-IoT-Devices?utm_source=mlm
#malware #PumaBot #IoT #security #SSH #systemd #firewall

PumaBot: Novel Botnet Targeting IoT Surveillance Devices
#PumaBot
https://www.darktrace.com/blog/pumabot-novel-botnet-targeting-iot-surveillance-devices

Darktrace investigated “PumaBot,” a Go-based Linux botnet targeting IoT devices. It avoids internet-wide scanning, instead using a C2 server to get targets and brute-force SSH credentials. Once inside, it executes remote commands and ensures persistence.

https://www.darktrace.com/blog/pumabot-novel-botnet-targeting-iot-surveillance-devices

#PumaBot #Darktrace #ThreatHunt #ThreatIntel #Botnet

New #PumaBot botnet brute forces SSH credentials to breach devices

A newly discovered Go-based Linux botnet #malware named #PumaBot is brute-forcing SSH credentials on embedded IoT devices to deploy malicious payloads.

Bill Toulas | bleepingcomputer.com • May 28, 2025

PumaBot is shaking up IoT security by targeting vulnerable Linux devices with weak SSH credentials—hijacking systems for crypto mining. Are your gadgets really safe?

https://thedefendopsdiaries.com/pumabot-a-new-threat-in-iot-security/

#pumabot
#iotsecurity
#botnet
#sshsecurity
#cryptomining

New #PumaBot targets #Linux #IoT surveillance devices
https://securityaffairs.com/178386/malware/pumabot-targets-linux-iot-devices.html
#securityaffairs #hacking #malware