Mirai-Based xlabs_v1 Botnet Exploits ADB for DDoS Attacks

Cybersecurity researchers identified a Mirai-based botnet variant named xlabs_v1 that exploits internet-exposed devices running Android Debug Bridge (ADB) to recruit them into a DDoS-capable network. The discovery was made by Hunt.io, which traced the malware to an exposed directory hosted in the Netherlands. The botnet inherits Mirai’s core functionality but operates under a distinct identifier, targeting vulnerable IoT and Android devices with open ADB interfaces. No specific CVE IDs, attack timelines, or victim counts were disclosed in the findings. The primary impact involves hijacking devices to amplify DDoS attack infrastructure.