Jérôme Meyer
@jmeyer.infosec.exchange.ap.brid.gy
Security research at Nokia Deepfield (he/they).
EN/FR posts | Fan of Crocker’s Rules, art, and the Oxford comma.
[bridged from https://infosec.exchange/@jmeyer on the fediverse by https://fed.brid.gy/ ]
EN/FR posts | Fan of Crocker’s Rules, art, and the Oxford comma.
[bridged from https://infosec.exchange/@jmeyer on the fediverse by https://fed.brid.gy/ ]
What can I say, I’m just here for the moss.
December 27, 2025 at 10:44 PM
What can I say, I’m just here for the moss.
The #kimwolf botnet roughly doubled its size in a week: https://x.com/xlab_qax/status/1997858921873342838?s=46
December 8, 2025 at 7:17 AM
The #kimwolf botnet roughly doubled its size in a week: https://x.com/xlab_qax/status/1997858921873342838?s=46
Reposted by Jérôme Meyer
New from @greynoise Labs: IP Check — a free tool to see if the network you're on has been compromised.
Residential proxy networks & IoT botnets are turning home & small biz connections into attack infrastructure. Most folks have no idea it's happening.
Visit check.labs.greynoise.io from any […]
Residential proxy networks & IoT botnets are turning home & small biz connections into attack infrastructure. Most folks have no idea it's happening.
Visit check.labs.greynoise.io from any […]
Original post on mastodon.social
mastodon.social
November 25, 2025 at 8:09 PM
New from @greynoise Labs: IP Check — a free tool to see if the network you're on has been compromised.
Residential proxy networks & IoT botnets are turning home & small biz connections into attack infrastructure. Most folks have no idea it's happening.
Visit check.labs.greynoise.io from any […]
Residential proxy networks & IoT botnets are turning home & small biz connections into attack infrastructure. Most folks have no idea it's happening.
Visit check.labs.greynoise.io from any […]
Good job everyone, we solved the DDoS-for-hire problem!
November 18, 2025 at 1:38 PM
Good job everyone, we solved the DDoS-for-hire problem!
Cloudflare now seeing yet-another record, at >22 Tbps. Only 40 seconds so quite likely to be a power proof / marketing material for the #DDoS-for-hire service operators; but we have a serious botnet centralization issue on our hands.
https://x.com/Cloudflare/status/1970244046946759024 […]
https://x.com/Cloudflare/status/1970244046946759024 […]
Original post on infosec.exchange
infosec.exchange
September 23, 2025 at 3:39 AM
Cloudflare now seeing yet-another record, at >22 Tbps. Only 40 seconds so quite likely to be a power proof / marketing material for the #DDoS-for-hire service operators; but we have a serious botnet centralization issue on our hands.
https://x.com/Cloudflare/status/1970244046946759024 […]
https://x.com/Cloudflare/status/1970244046946759024 […]
#rapperbot is no more: https://www.justice.gov/usao-ak/pr/oregon-man-charged-administering-rapper-bot-ddos-hire-botnet
(I had been wondering why the C2 nodes were being rude to our tracking clients since August 6. Now I know!)
(I had been wondering why the C2 nodes were being rude to our tracking clients since August 6. Now I know!)
Oregon man charged with administering “Rapper Bot” DDoS-for-hire Botnet
ANCHORAGE, Alaska – An Oregon man was charged by a federal criminal complaint today in the District of Alaska on charges related to his alleged development and administration of the “Rapper Bot” DDoS-for-hire Botnet that has conducted large-scale cyber-attacks since at least 2021.
www.justice.gov
August 19, 2025 at 7:35 PM
#rapperbot is no more: https://www.justice.gov/usao-ak/pr/oregon-man-charged-administering-rapper-bot-ddos-hire-botnet
(I had been wondering why the C2 nodes were being rude to our tracking clients since August 6. Now I know!)
(I had been wondering why the C2 nodes were being rude to our tracking clients since August 6. Now I know!)
Reposted by Jérôme Meyer
July 3, 2025 at 6:56 AM
Supposed to be enjoying a week off skiing, but the X DDoS-related outage brought me back a bit.
Hint: that attack has been botnet-driven.
Hint: that attack has been botnet-driven.
March 10, 2025 at 8:50 PM
Supposed to be enjoying a week off skiing, but the X DDoS-related outage brought me back a bit.
Hint: that attack has been botnet-driven.
Hint: that attack has been botnet-driven.