How the 'Matryosh' botnet targets vulnerable Android devices (Source: Netlabs)
Researchers at the security firm Netlab have identified a previously undocumented botnet dubbed "Matryosh" that is targeting vulnerable Android devices to help build its network so it can conduct distributed denial-of-service attacks.
The Matryosh botnet, which the researchers discovered Jan. 25, looks for Android devices in which the smartphone manufacturer left the Android Debug Bridge feature - a diagnostics and debugging tool - unsecured and open to the internet, the report notes.
Other botnets are also taking advantage of the Android Debug Bridge feature when the tool is left unsecured. For example, in October 2020, Barracuda Networks discovered a botnet called "InterPlanetary Storm" that followed a similar pattern (see: