See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

New Win-DDoS Flaws Let Attackers Turn Public Domain Controllers into DDoS Botnet via RPC, LDAP

Summary by IT Security News - Cybersecurity, Infosecurity News
A novel attack technique could be weaponized to rope thousands of public domain controllers (DCs) around the world to create a malicious botnet and use it to conduct power distributed denial-of-service (DDoS) attacks. The approach has been codenamed Win-DDoS by… Read more → The post New Win-DDoS Flaws Let Attackers Turn Public Domain Controllers into DDoS Botnet via RPC, LDAP appeared first on IT Security News.
DisclaimerThis story is only covered by news sources that have yet to be evaluated by the independent media monitoring agencies we use to assess the quality and reliability of news outlets on our platform. Learn more here.

8 Articles

WebProNewsWebProNews

Windows DoS Flaws Enable DDoS Attacks on Domain Controllers – Microsoft Patch Issued

In the ever-evolving world of cybersecurity threats, a new set of vulnerabilities in Microsoft’s Windows operating system has raised alarms among enterprise IT professionals. Researchers at SafeBreach Labs have uncovered four denial-of-service (DoS) flaws that could allow attackers to transform publicly exposed Windows domain controllers into unwitting participants in distributed denial-of-service (DDoS) attacks. These flaws, exploiting protocol…

Read Full Article
GBHackers On SecurityGBHackers On Security

Win-DoS’ Zero-Click Exploit Could Weaponize Windows Infrastructure for DDoS Attacks

Security researchers have uncovered a “zero-click” denial-of-service chain that can silently turn thousands of Microsoft Windows Domain Controllers (DCs) into a globe-spanning botnet, raising fresh alarms in a year already defined by record-breaking distributed-denial-of-service (DDoS) activity. DDoS attacks climbed 56% year-over-year in late-2024 according to Gcore’s latest Radar report, and Cloudflare’s network has already blocked […] The post…

Read Full Article
Help Net SecurityHelp Net Security

Win-DDoS: Attackers can turn public domain controllers into DDoS agents - Help Net Security

A memory exhaustion vulnerability (CVE-2025-32724) can be leveraged to force public domain controllers to participate in DDoS attacks.

Read Full Article
CSO OnlineCSO Online

‘Win-DDoS’: Researchers unveil botnet technique exploiting Windows domain controllers

SafeBreach researchers demonstrate how attackers can crash Windows domain controllers and build a botnet using unauthenticated RPC and LDAP vulnerabilities.

Read Full Article
unsafe.shunsafe.sh

Hackers Exploit Rpc and Ldap Vulnerabilities to Transform Public Domain Controllers Into a Malicious Botnet

This article explains the meaning, common causes, and solutions for HTTP error code 521, and provides preventive measures to avoid this problem from happening again.

Read Full Article
cybernoz.comcybernoz.com

New Win-DDoS Flaws Let Attackers Turn Public Domain Controllers Into DDoS Botnet Via RPC, LDAP - Cybernoz - Cybersecurity News

Aug 10, 2025Ravie LakshmananVulnerability / Network Security A novel attack technique could be weaponized to rope thousands of public domain controllers (DCs) around the world to create a malicious botnet and use it to conduct power distributed denial-of-service (DDoS) attacks. The approach has been codenamed Win-DDoS by SafeBreach researchers Or Yair and Shahak Morag, who presented their findings at the DEF CON 33 security conference today. …

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • There is no tracked Bias information for the sources covering this story.

Factuality 

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

The Hacker News broke the news in on Sunday, August 10, 2025.
Sources are mostly out of (0)

Similar News Topics

Microsoft icon

Microsoft

Windows icon

Windows

News
For You
SearchBlindspotLocal