Cloudflare has redacted domains associated with the Aisuru botnet from its top websites list due to an influx of malicious query traffic generated by this rapidly expanding botnet. Aisuru, comprised of numerous hacked Internet of Things devices, has leveraged its power to execute record DDoS attacks reaching around 30 terabits per second. CEOs from Cloudflare and security firms highlight the issues presented by manipulated rankings, pointing out that this undermines trust in domain popularity assessments.
The botnet has redirected its attack strategy to utilize Cloudflare’s DNS services, drawing concerns regarding the reliability of domain rankings for trust and safety purposes. Experts indicate that an independent verification of domain rankings could prevent malicious listings from entering trusted systems. Additionally, scrutiny into the implications of such malicious domains appearing in trusted rankings underlines the need for Cloudflare to improve its ranking algorithms. Cloudflare initially attempted to address the problem by redacting Aisuru domains but now faces criticism for allowing any of these domains to persist in their top lists, which could have severe consequences for security protocols.
👉 Pročitaj original: Krebs on Security
