• Tools
  • Playbooks
  • Speaking Events
  • About Us
6,849
people reacted

Grandstream and DrayTek Devices Exploited to Power New Hoaxcalls DDoS Botnet

A proof-of-concept for CVE-2020-8515 that was made publicly available in March is found being employed by a new DDoS botnet called hoaxcalls.

Read Blog

12

7 min. read

Cloud Threats: Original Research and In-Depth Analysis

Learn more

Don't Panic!: The Unit 42 Podcast

Listen

Get updates on Unit 42

Please enter your email address!

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement.

Please mark, I'm not a robot!

  • All
  • Threat Briefs
  • Reports
6,849
people reacted

Grandstream and DrayTek Devices Exploited to Power New Hoaxcalls DDoS Botnet

  • By Ken Hsu, Haozhe Zhang, Zhibin Zhang and Ruchna Nigam
  • April 3, 2020 at 1:07 PM

12

7 min. read

4,415
people reacted

GuLoader: Malspam Campaign Installing NetWire RAT

  • By Brad Duncan
  • April 3, 2020 at 6:00 AM

3

6 min. read

Trending

  • Actors Still Exploiting SharePoint Vulnerability to Attack Middle East Government Organizations
  • Exploits in the Wild for Citrix ADC and Citrix Gateway Directory Traversal Vulnerability CVE-2019-19781
  • Don’t Panic: COVID-19 Cyber Threats
  • The Fractured Statue Campaign: U.S. Government Agency Targeted in Spear-Phishing Attacks
  • Threat Brief: Microsoft SMBv3 Wormable Vulnerability CVE-2020-0796
6,707
people reacted

SilverTerrier: 2019 Nigerian Business Email Compromise Update

  • By Peter Renals
  • March 31, 2020 at 6:00 AM

9

15 min. read

12,280
people reacted

Don’t Panic: COVID-19 Cyber Threats

  • By Ryan Olson
  • March 24, 2020 at 6:00 AM

34

3 min. read

13,155
people reacted

New Mirai Variant Targets Zyxel Network-Attached Storage Devices

  • By Ken Hsu, Zhibin Zhang and Ruchna Nigam
  • March 19, 2020 at 12:15 PM

18

7 min. read

13,786
people reacted

Threat Brief: Microsoft SMBv3 Wormable Vulnerability CVE-2020-0796

  • By Mike Harbison and Brandon Young
  • March 11, 2020 at 10:15 AM

35

2 min. read

16,641
people reacted

2020 Unit 42 IoT Threat Report

  • By Unit 42
  • March 10, 2020 at 3:00 AM

35

3 min. read

14,077
people reacted

Molerats Delivers Spark Backdoor to Government and Telecommunications Organizations

  • By Robert Falcone, Bryan Lee and Alex Hinchliffe
  • March 3, 2020 at 6:00 AM

21

28 min. read

14,745
people reacted

Cortex XDR™ Detects New Phishing Campaign Installing NetSupport Manager RAT

  • By Mike Harbison, Brittany Barbehenn and Bryan Lee
  • February 27, 2020 at 6:00 AM

29

9 min. read

11,371
people reacted

Can You Trust Your AutoIT Decompiler?

  • By Robert McCallum
  • February 20, 2020 at 6:00 AM

35

5 min. read

16,285
people reacted

Wireshark Tutorial: Examining Qakbot Infections

  • By Brad Duncan
  • February 13, 2020 at 6:00 AM

22

9 min. read

19,274
people reacted

Unit 42 CTR: Leaked Code from Docker Registries

  • By Jay Chen
  • February 7, 2020 at 6:00 AM

16

7 min. read

15,054
people reacted

Unit 42 CTR: Sensitive Data Exposed in GitHub

  • By Nathaniel Quist
  • February 6, 2020 at 6:00 AM

10

7 min. read

13,551
people reacted

Unit 42 Cloud Threat Report: Spring 2020

  • By Unit 42
  • February 5, 2020 at 3:00 AM

21

3 min. read

18,804
people reacted

Actors Still Exploiting SharePoint Vulnerability to Attack Middle East Government Organizations

  • By Robert Falcone
  • February 3, 2020 at 6:00 AM

12

13 min. read

loader gif
Sorry, no results were found.
Sorry, no results were found.
Clear

Popular Resources

  • Resource Center
  • Blog
  • Communities
  • Tech Docs
  • Unit 42
  • Sitemap

Legal Notices

  • Privacy
  • Terms of Use
  • Documents

Account

  • Manage Subscriptions
  •  
  • Report a Vulnerability

© 2020 Palo Alto Networks, Inc. All rights reserved.