Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada
Canadian authorities arrested 23‑year‑old Jacob Butler of Ottawa, accused of building and operating the Kimwolf IoT botnet that generated record DDoS attacks up to 30 Tbps. The U.S. Justice Department unsealed a criminal complaint in Alaska, charging Butler with computer intrusion and related offenses, and he now faces extradition to the United States. The botnet compromised millions of devices, rented them to other criminals, and caused financial losses exceeding $1 million for some victims. International law‑enforcement operations also seized the botnet’s infrastructure and related DDoS‑for‑hire services.
CISA Admin Leaked AWS GovCloud Keys on Github
A CISA contractor maintained a public GitHub repository called “Private‑CISA” that exposed administrative AWS GovCloud keys, plaintext passwords, and internal build files. Security researcher Guillaume Valadon of GitGuardian flagged the repo on May 15, leading to its removal, but the AWS...
Russia Hacked Routers to Steal Microsoft Office Tokens
Russian GRU-linked group Forest Blizzard exploited vulnerabilities in over 18,000 outdated SOHO routers to hijack DNS settings and intercept Microsoft Office OAuth tokens. The campaign required no malware, instead redirecting traffic through attacker‑controlled DNS servers to perform man‑in‑the‑middle attacks on...
Who Is the Kimwolf Botmaster “Dort”?
KrebsOnSecurity identified the individual behind the Kimwolf botnet as a teenager from Canada using the handle "Dort" and aliases like CPacket and M1CE. Public OSINT links the persona to a GitHub account, multiple cyber‑crime forum registrations, and a history of...
Please Don’t Feed the Scattered Lapsus ShinyHunters
The Scattered Lapsus ShinyHunters (SLSH) extortion gang blends data theft with aggressive personal harassment, including swatting, DDoS attacks, and media pressure. Operating through chaotic Telegram channels linked to The Com cyber‑crime network, they target executives via phone‑based phishing and MFA...
Dismantling Defenses: Trump 2.0 Cyber Year in Review
The Trump administration’s 2025‑2026 policy agenda has dramatically reshaped U.S. cyber, privacy and law‑enforcement priorities. New directives such as NSPM‑7 and a FBI cash‑reward program broaden the definition of domestic terrorism to include political dissent, while travel‑screening rules force tourists...
Most Parked Domains Now Serving Malicious Content
Researchers at Infoblox discovered that more than 90% of parked domains now redirect visitors to scams, malware, or unwanted software. The malicious redirects are triggered primarily for users on residential IP addresses, while VPN traffic often receives a harmless parking...