The Kimwolf botnet, a successor to the Aisuru DDoS network, rapidly expanded to over 2 million Android TV devices using residential proxies. Its activities include frequent DDoS attacks, mainly targeting Minecraft servers, posing significant threats if used against critical infrastructure. #Kimwolf #Aisuru #DDoS #AndroidTV #CyberThreats
Keypoints
- The Kimwolf botnet originated from the Aisuru DDoS network and gained rapid prominence in 2025.
- It infected over 2 million Android TV devices by exploiting residential proxy networks for control.
- Security efforts by Lumen and partners have blocked over 550 command and control servers linked to Kimwolf.
- Kimwolf operators have engaged in provocative DDoS payloads, indicating a primarily financially motivated cybercriminal group.
- The botnet’s DDoS attacks often target Minecraft servers and have the potential to disrupt critical infrastructure.
Read More: https://cyberscoop.com/kimwolf-aisuru-botnet-lumen-technologies/