Researchers uncovered 'KadNap', a botnet (~14,000 devices) that weaponizes a Kademlia (distributed hash table) peer‑to‑peer design built into home routers to hide command servers and resist traditional takedown methods. Infections concentrate on specific vendor models (mostly Asus) and persist across reboots unless devices are factory‑reset and patched.
— This shows that IoT/router firmware vulnerabilities plus P2P C2 designs create durable, anonymizing proxy networks that complicate law‑enforcement takedowns and raise stakes for device regulation, patch policies, and ISP mitigation.
BeauHD
2026.03.11
100% relevant
Article details the KadNap botnet using Kademlia DHT, ~14,000 mostly‑Asus routers, Black Lotus Labs' discovery and blocking approach, and the recommendation that owners factory‑reset and install firmware updates.
← Back to All Ideas