Recent reports indicate that the infamous Mirai botnet shows no signs of disappearing in the near future, along with the persistent threat of Distributed Denial of Service (DDoS) attacks. According to Cloudflare, there has been a concerning 53% increase in DDoS threats in 2024 compared to the previous year. What is even more alarming is the staggering 1,885% surge in attacks exceeding 1 Tbps, known as “hyper-volumetric” DDoS attacks, observed between the third and fourth quarters of 2024.
One of the latest developments in the world of cybercrime involves the Aquabotv3 botnet being advertised as a DDoS-as-a-service offering. The researchers at Akamai have discovered that the creators of Aquabotv3 have been promoting the botnet as a DDoS service on various platforms such as Telegram, using different aliases like Cursinq Firewall, The Eye Services, and The Eye Botnet.
It is worth noting that the threat actors behind Aquabotv3 often claim that the botnet is harmless and meant for DDoS mitigation testing purposes or educational use, such as red teaming. However, a closer examination by experts like Lefton and Cashdollar reveals that the true intention is to market Aquabotv3 as a DDoS-as-a-service solution. In some cases, the owners of the botnet are openly bragging about operating their own botnet for malicious purposes.
The rise of DDoS-as-a-service offerings like Aquabotv3 highlights the evolving landscape of cyber threats and the growing sophistication of malicious actors. By providing easy access to powerful botnets for hire, these services enable individuals with little technical expertise to launch devastating DDoS attacks against targets of their choosing. This trend poses a significant challenge for cybersecurity professionals and law enforcement agencies striving to combat cybercriminal activities effectively.
In response to the escalating threat of DDoS attacks, organizations must prioritize proactive security measures to defend against potential disruptions to their online services. This includes investing in robust DDoS mitigation solutions, implementing network security best practices, and staying vigilant against emerging threats like Aquabotv3 and other DDoS-as-a-service platforms.
As the cybersecurity landscape continues to evolve, it is essential for businesses, governments, and individuals to remain vigilant and adapt their defenses to counter the ever-changing tactics of cybercriminals. By staying informed about the latest threats and implementing strong security measures, we can collectively work towards safeguarding the digital infrastructure that underpins our modern society.