A sophisticated botnet campaign exploiting exposed command-and-control (C2) logs has surged by 230% between July and August 2025, compromising thousands of SOHO routers, embedded Linux devices, and enterprise web servers. CloudSEK’s TRIAD threat hunters uncovered six months of panel logs revealing a Loader-as-a-Service model that automates authentication probes, command injection, and payload delivery across diverse […] The post New Loader as a Service Botnet Targets Routers and IoT Devic...
