Cyber Security Headlines Azure hit by DDoS, Kenyan government sites recover, EVALUSION emerges
10 snips
Nov 18, 2025 Azure faced a significant DDoS attack from the Asiru IoT botnet, reaching unprecedented levels. Meanwhile, Kenyan government websites were quickly restored after being defaced by a hacker group. The Evolution malware campaign is on the rise, utilizing social engineering to deliver data-stealing trojans. Additionally, a report highlighted the inadequacy of cyber simulations, revealing teams are overly confident yet poorly prepared. Lastly, CISA plans to tackle staffing shortages with a major hiring initiative.
AI Snips
Chapters
Transcript
Episode notes
Massive IoT Botnet DDoS Escalation
- Microsoft reported a 15.72 Tbps DDoS using over 500,000 IPs from the Asiru botnet.
- The attack peaked at 3.64 billion packets per second with high-rate UDP floods targeting an Australian IP.
Asiru Uses Common IoT Weaknesses
- Asiru is a Turbo Moray–class IoT botnet exploiting routers, IP cameras, and DVRs.
- It has a history of record attacks including a 22.2 Tbps strike mitigated by Cloudflare.
Kenyan Government Sites Defaced Briefly
- Kenya's government sites were briefly defaced with white supremacist messages on November 17.
- The interior ministry contained the incident quickly and restored monitoring across affected systems.