Global NewsHigh Priority (9/10)4 days ago

$10 Domain Could Have Compromised 25,000 Endpoints in Global Cyber Attack

A $10 unregistered domain could have given hackers control over 25,000 endpoints, including in university, OT, government, and healthcare networks.

Key Points

$10 domain could control 25,000 endpoints globally
Payload disables cybersecurity products and blocks updates
Affected universities, OT, government, and healthcare networks
Highlights vulnerability of critical infrastructure

Full Details

Cybersecurity firm Huntress uncovered a sophisticated threat where a single unregistered domain, available for as little as $10, could have granted silent control over more than 25,000 compromised endpoints worldwide. The threat, observed since March 2025, involved a PowerShell-based payload that disables cybersecurity products and blocks updates. Affected hosts included 221 universities, 41 operational technology (OT) networks, 35 government entities, and three healthcare organizations. This highlights the vulnerability of critical infrastructure to low-cost cyber attacks. Huntress's discovery underscores the need for robust domain monitoring and cybersecurity measures.

Why It Matters

This incident demonstrates how low-cost cyber tools can threaten critical infrastructure, emphasizing the need for enhanced domain security and proactive threat detection.

Sourcesecurityweek.comApril 15, 2026

Get stories like this delivered daily

AI-curated news, personalized to your interests. Zero noise.

Start 7-Day Free Trial →

$10 Domain Could Have Compromised 25,000 Endpoints in Global Cyber Attack

Key Points

Full Details

Why It Matters

Get stories like this delivered daily

More in Global News

Iran war: What is happening on day 51 of the US-Iran conflict?

Bodies of 50 infants dumped at Trinidad graveyard

Iran war live: Tehran says no date set for US talks, Hormuz Strait closed

Trinidad and Tobago police uncover 56 bodies, mostly children, at cemetery