#ddos-attacks

#ddos-attacks

Also known as Kimwolf, Aisuru is one of the largest botnets currently in existence, powered by an estimated one to four million infected hosts worldwide, including home and consumer devices such as routers and online CCTV systems. Its operators scan the web for vulnerable devices, often with exposed ports or default credentials, and infect them to add them to a pool of devices that can be harnessed to launch a tsunami of fake traffic against a target service.

"SoundCloud recently detected unauthorized activity in an ancillary service dashboard," opens a Monday post from the company. "Upon making this discovery, we immediately activated our incident response protocols and promptly contained the activity. We also engaged leading third-party cybersecurity experts to assist in a thorough investigation and response." Not long after SoundCloud and its hired help contained the incident, the site became the subject of multiple denial of service attacks.

As Apache explained, the entry point for CVE-2025-54988 was Tika's tika-parser-pdf-module, but the vulnerability and its fix were in another piece of code called tika-core. "Users who upgraded the tika-parser-pdf-module but did not upgrade tika-core to >= 3.2.2 would still be vulnerable," the organization advised. The org's new advisory also admits that its original report "failed to mention that in the 1.x Tika releases, the PDFParser was in the org.apache.tika:tika-parsers module." Tika's developers have tidied things up in recent releases, and now users get to revisit this mess too.