Darktrace investigated “PumaBot,” a Go-based Linux botnet targeting IoT devices. It avoids internet-wide scanning, instead using a C2 server to get targets and brute-force SSH credentials. Once inside, it executes remote commands and ensures persistence.
Darktrace investigated “PumaBot,” a Go-based Linux botnet targeting IoT devices. It avoids internet-wide scanning, instead using a C2 server to get targets and brute-force SSH credentials. Once inside, it executes remote commands and ensures persistence.
https://www.darktrace.com/blog/pumabot-novel-botnet-targeting-iot-surveillance-devices
Darktrace investigated “PumaBot,” a Go-based Linux botnet targeting IoT devices. It avoids internet-wide scanning, instead using a C2 server to get targets and brute-force SSH credentials. Once inside, it executes remote commands and ensures persistence.
New #PumaBot botnet brute forces SSH credentials to breach devices
A newly discovered Go-based Linux botnet #malware named #PumaBot is brute-forcing SSH credentials on embedded IoT devices to deploy malicious payloads.
Bill Toulas | bleepingcomputer.com • May 28, 2025
PumaBot is shaking up IoT security by targeting vulnerable Linux devices with weak SSH credentials—hijacking systems for crypto mining. Are your gadgets really safe?
https://thedefendopsdiaries.com/pumabot-a-new-threat-in-iot-security/
Linux Magazine
The Threat Codex
Mr Pickles
AnonTroyanoVirus303 #Anonymous
The DefendOps Diaries
securityaffairs