RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS

RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS
RustDuck is a new two-stage malware family that compromises home routers, IP cameras, Android boxes, and exposed servers to build a botnet for DDoS attacks. QiAnXin’s XLab says it is rapidly evolving, rewriting its core in Rust, and using strong anti-analysis and encrypted communications to evade detection. #RustDuck #QiAnXinsXLab #RustoBot #AISURU

Keypoints

  • RustDuck hijacks routers, cameras, Android boxes, and servers for DDoS attacks.
  • It spreads through weak passwords, unpatched device flaws, and exposed web software.
  • The malware uses a two-stage design with a Rust-based core that is harder to analyze.
  • RustDuck checks for sandboxes, debuggers, honeypots, and virtual machines before running.
  • Defenders should disable public remote access, patch devices, and block RustDuck indicators.

Read More: https://thehackernews.com/2026/06/rustduck-botnet-rebuilds-in-rust-to.html