Ddostf DDoS Botnet Malware Targets MySQL Servers

The newly-discovered Ddostf malware botnet targets MySQL servers to run a Distributed Denial of Service (DDoS)-as-a-Service platform. The botnet, traced back to Chinese origin, has been found to exploit vulnerabilities in unpatched MySQL environments or brute-force weak administrator account credentials to gain unauthorized access. AhnLab Security Emergency Response Center researchers advise MySQL administrators to apply updated patches and choose long, unique passwords to protect against brute force and dictionary attacks. Don’t ease up and always stay secure.