C0XMO botnet spreads via DD-WRT router flaw, kills rival malware

By Bill Toulas

AI Summary

A new Gafgyt botnet variant dubbed C0XMO is actively exploiting a vulnerability in DD-WRT router firmware, targeting multiple CPU architectures and programmatically terminating competing malware processes to monopolize infected devices. Security teams managing DD-WRT-based network infrastructure should audit for compromise indicators, as the botnet's cross-architecture capability broadens its attack surface significantly.

Read full article → https://www.bleepingcomputer.com/news/security/c0x…

Relevance score: 80.0/100

# More from June 08

1
Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available The Hacker News
2
Silent Ransom Group targets law firms with fake IT support calls BleepingComputer
4
Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI The Hacker News
5
School shooting survivor sues AI gun detection firm after system failed to spot weapon Ars Technica Security
6
Opal Security Raises $23 Million for AI-Native Identity Governance SecurityWeek
7
Emphere Raises $2.1 Million for AI-Powered Vulnerability Remediation SecurityWeek
8
Hands on with Intelligent Terminal, an AI-powered Windows Terminal BleepingComputer
9
Some ancient microbes frozen with Ötzi the Iceman are still growing Ars Technica Security
10
Scientists ejected from diabetes conference for distributing journal reprints Ars Technica Security