Security news aggregator

Latest coverage for DoS

Stay updated on DoS threats. Explore the latest news and insights on Denial of Service attacks, prevention tips, and cybersecurity strategies.

3 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Denial of service (DoS) is an attack that makes a system, network, or application unavailable by exhausting resources or triggering failure. Floods can consume bandwidth, connection state, CPU, memory, or request-processing capacity; a software defect may instead be exploited to crash a service. A distributed denial-of-service (DDoS) attack generates traffic from many systems, increasing volume and complicating source-based blocking. The material security impact is loss of availability for users and dependent services, including websites, APIs, DNS, and operational systems.

Mitigation should match the bottleneck. Rate limits, request validation, connection protections, caching, and service isolation can reduce application and state-exhaustion attacks; volumetric traffic generally needs filtering or absorption upstream of the network. Monitoring should distinguish abnormal request patterns from ordinary load and alert on saturation, while tested failover, traffic diversion, and restoration procedures limit outage duration. Vulnerability management and timely patching reduce DoS caused by remotely triggerable crashes, but do not replace capacity planning and resilience testing.

Volume over time

Weekly headline count for the current query.

Showing 3 most recent headlines Filtered view
Security Affairs 5 hours, 12 minutes ago

OpenSSL Fixes HollowByte Memory Exhaustion Bug

Okta disclosed HollowByte, an 11-byte OpenSSL flaw that lets remote attackers exhaust server memory and trigger denial-of-service attacks. Okta’s Red Team disclosed a denial-of-service vulnerability in OpenSSL they named HollowByte, and the attack payload is exactly 11 bytes. A remote, unauthenticated attacker sends that payload and the server allocates up to 131 KB of memory […]

RustDuck is a small, evolving DDoS botnet migrating to Rust. It uses advanced encryption, anti-analysis evasion, and exploits known IoT flaws. Since February 2026, researchers at QiAnXin’s XLab have been tracking a new malware family, called RustDuck, that hijacks routers, cameras, Android set-top boxes, and exposed servers, then uses them to flood targets with junk […]

Security Affairs 1 month, 1 week ago

IoT Botnet C0XMO Adds Competitor-Killing Capability

C0XMO is a new Gafgyt botnet variant exploiting old router flaws, spreading across IoT devices, killing rivals, and enabling large-scale DDoS attacks. In March 2026, FortiGuard Labs discovered a new variant of the Gafgyt botnet, dubbed C0XMO, which is noticeably more capable than its predecessors. The malware spreads through CVE-2021-27137, a stack buffer overflow in […]