Threats Tagged 'dos'

Bulletin ID: 2026-046-AWS Scope: AWS Content Type: Important (requires attention) Publication Date: 06/18/2026 17:30 PM PDT Description: containerd is an open-source container runtime used by Kubernetes via the Container Runtime Interface (CRI) plugin. It underpins AWS managed container services including Amazon Elastic Kubernetes Service (Amazon EKS), Amazon Elastic Container Service (Amazon ECS), AWS Fargate, Bottlerocket, and Amazon Linux. AWS identified five issues in the containerd CRI plugin affecting versions 1.7 through 2.3. - CVE-2026-50195 (GHSA-cvxm-645q-p574) - CRI checkpoint import, local image tag poisoning - CVE-2026-53488 (GHSA-xhf5-7wjv-pqxp) - image-config LABEL -> host-root command exec - CVE-2026-53492 (GHSA-33vj-92qq-66hc) - CDI annotation smuggling during checkpoint restore - CVE-2026-53489 (GHSA-rgh6-rfwx-v388) - arbitrary host file read via symlink in checkpoint restore - CVE-2026-47262 (GHSA-jpcc-p29g-p8mq) - image-triggered runtime DoS Impacted versions: containerd 1.7, 2.0, 2.1, 2.2, 2.3 Please refer to the article below for the most up-to-date and complete information related to this AWS Security Bulletin.

A new denial-of-service (DoS) attack dubbed HTTP/2 Bomb can be launched from a single machine to take down web servers within seconds. [...]

A denial of service (DoS) vulnerability exists in strongSwan version 5.9.13 and earlier, specifically affecting the charon component built from the upstream tarball on Debian 12 bookworm. Exploit code is available in Python. This vulnerability could allow an attacker to disrupt the availability of the affected system.

DDoS attacks are increasingly being sold like subscription services, complete with pricing tiers, support, and reseller programs. Flare explores how the DDoS-as-a-Service market has evolved from scattered tools into polished attack platforms. [...]

A Brazilian anti-DDoS technology firm was found to have enabled a botnet that launched prolonged and massive distributed denial-of-service (DDoS) attacks against other Brazilian network operators. The firm's CEO attributes the malicious activity to a security breach, suggesting it was likely orchestrated by a competitor aiming to damage the company's reputation. There is no evidence of known exploits in the wild beyond this incident, and no patch or remediation information is available. The incident highlights risks related to insider threats or compromised infrastructure within security service providers.

MediumVulnerabilityBrazil#dos

Jacob Butler, a 23-year-old from Ottawa, Canada, was arrested for allegedly operating the Kimwolf IoT botnet, which enslaved millions of devices to conduct massive distributed denial-of-service (DDoS) attacks over six months. The botnet targeted devices like digital photo frames and web cameras, including those behind firewalls, and was involved in record-breaking DDoS attacks reaching nearly 30 Tbps. Butler faces criminal charges in both Canada and the U.S., including unauthorized computer use and aiding computer intrusion. Law enforcement seized Kimwolf's infrastructure along with other competing botnets. The botnet caused significant financial losses exceeding one million dollars for some victims and was linked to harassment campaigns such as doxing and swatting against security researchers. The investigation involved multiple agencies including the FBI and the Department of Defense. No specific software versions are identified as affected, and no patch or remediation is applicable as this concerns criminal activity rather than a software vulnerability.