Mēris Botnet is the Perpetrator Behind the DDoS Attack that Hit Yandex

This article has been indexed from E Hacking News – Latest Hacker News and IT Security News

 

A new botnet dubbed Mēris has launched a record-breaking distributed denial-of-service (DDoS) attack on Russian internet company Yandex. The botnet is thought to have pounded the company’s web infrastructure with millions of HTTP requests before peaking at 21.8 million requests per second (RPS), surpassing a recent botnet-powered attack that pounded an unnamed Cloudflare customer in the financial industry with 17.2 million RPS last month. 
 Mēris – which means “Plague” in Latvian – is a “botnet of a new kind,” according to Russian DDoS mitigation provider Qrator Labs, which revealed details of the attack on Thursday. The DDoS assaults used a method known as HTTP pipelining, which allows a client (such as a web browser) to create a connection to a server and send numerous requests without having to wait for each answer. 
The malicious traffic came from over 250,000 compromised hosts, mostly Mikrotik network devices, with evidence pointing to a variety of RouterOS versions weaponized by exploiting yet unknown vulnerabilities. 
“It is also clear that this particular botnet is still growing. There is a suggestion that the botnet could grow in force through password brute-forcing, although we tend to neglect that as a slight possibility. That looks like some vulnerability that was either kept secret before the massive campaign’s start or sold on the black market,” the researchers noted. “Mēris can overwhelm almost any infrastructure, including some highly robust networks due to the enormous RPS power that it brings along.”
Mēris utilises the SOCKS4 proxy on the infected d

[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.

Read the original article: Mēris Botnet is the Perpetrator Behind the DDoS Attack that Hit Yandex

Liked it? Take a second to support IT Security News on Patreon!
Become a patron at Patreon!