The Masjesu botnet is emerging as a new DDoS-for-hire service targeting Internet of Things (IoT) devices such as routers and network gateways. Active since 2023, this botnet focuses on stealth and persistence, quietly building a large network of compromised devices across different systems. Unlike traditional noisy attacks, Masjesu operates with low visibility, making it harder to detect and mitigate.

What makes Masjesu particularly dangerous is its commercial model. It is promoted through platforms like Telegram, allowing attackers to rent DDoS services on demand. This lowers the barrier for cybercriminals and enables more frequent attacks against businesses, online services, and gaming platforms.

Technically, the malware infects vulnerable IoT devices and connects them to a command-and-control infrastructure. These compromised devices are then used to generate massive traffic floods that overwhelm targets and disrupt services. To stay undetected, the botnet uses techniques like encrypted communication and traffic obfuscation.

The rise of Masjesu highlights a growing cybersecurity risk where everyday connected devices can be turned into attack tools. Organizations and users should secure IoT devices, apply regular updates, and monitor network activity to reduce the risk of compromise.

source: https://thehackernews.com/2026/04/masjesu-botnet-emerges-as-ddos-for-hire.html