RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS
Summary
A new malware family named RustDuck, written in Rust, is actively hijacking routers, IP cameras, and servers to build a botnet for Distributed Denial of Service (DDoS) attacks. Researchers have been tracking its rapid evolution since February 2026, highlighting its dynamic nature.
IFF Assessment
This malware actively compromises devices and builds botnets, posing a direct threat to online services and infrastructure.
Defender Context
Defenders should be aware of the emergence of new malware families like RustDuck, particularly those written in modern languages like Rust, which can be used to compromise IoT devices and servers. It underscores the importance of securing network perimeters, patching vulnerabilities in edge devices, and monitoring for unusual network traffic that might indicate botnet activity.