Posted: April 3, 2019

Gafgyt Description

Gafgyt is the name of a botnet that used to target Internet-of-Things (IoT) devices, but as of recently it also has been found to attempt to exploit vulnerabilities in popular Web applications like the Apache Struts and SonicWall. Just like many other botnets, the Gafgyt also may be utilized to execute large-scale Distributed-Denial-of-Service attacks that may hinder the stability of Web servers and online services.

Almost all vulnerabilities that the Gafgyt botnet is meant to exploit have already been patched, and only devices with outdated firmware are vulnerable to them – this is why we advise our readers to check the software version of their Internet-connected devices regularly and apply all security patches and updates as soon as possible.

Apart from the SonicWall and Apache Struts vulnerabilities that the Gafgyt exploits, the botnet also is programmed to scan for a large number of other vulnerabilities regarding various Huawei, GPON and D-Link devices. All systems that the Gafgyt compromises may be used to execute DDoS attacks immediately – one of the peculiar things about the Gafgyt botnet is that it was spotted to use the so-called BlackNurse DDoS attacks. Usually, these attacks are meant to consume a network’s bandwidth by sending network packets from multiple devices (botnet members). However, the BlackNurse DDoS attack is a bit more sophisticated because it uses special packets that will not result in overflooding the target with traffic - instead, it may use up all available CPU resources by forcing the targeted system’s firewall to attempt to process the compromised packets sent out by the Gafgyt botnet, therefore preventing it from processing the legitimate requests.

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to Gafgyt may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria.

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.

Leave a Reply

Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter. If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.