Killnet is a hacker group that has been linked to the Russian invasion of Ukraine and has been known to launch DDoS attacks against health clinics, hospitals, the FBI, the European Parliament, businesses in the UK, and Lockheed Martin. In response to this, SecurityScorecard has created and released a list of proxy IPs used by Killnet and other network spamming gangs to target unsuspecting users. This list, which is available on GitHub, contains around 17,746 IP addresses and can be used to help organizations protect themselves from DDoS bots. The FBI has stated that the group's DDoS attacks are mainly publicity stunts and that they mainly rely on Telegram for their operations. Although their attacks usually don't cause significant damage, they can disrupt services for hours or knock websites offline, which could affect healthcare organizations and their patients. To help protect against this, the full blocklist of proxy IPs can be found on SecurityScorecard's blog post.
This Cyber News was published on www.hackread.com. Publication date: Wed, 08 Feb 2023 16:41:02 +0000