Future Trends:

• AI attack and defense spiral acceleration: Attackers will use generative AI more deeply to participate in vulnerability mining, highly personalized phishing attack payload generation and other full-link attacks.
• Transformation to infrastructure and stealth revolution: Proxy botnets will complete the transformation from “attack tools” to “criminal Internet core infrastructure”.
• Mobile threats become “super entry”: The scale of mobile botnets represented by Android large-screen devices (TVs, set-top boxes) will continue to expand.
• DDoS-as-a-Service and scenario-tailored attacks: Targeted attacks similar to the “DDoS attack method” provided by the Poxiao group and Httpbot will be richer and more sophisticated.
• Cover and leverage of APT network operations: APT groups with national backgrounds may rent or manipulate more black and gray industry botnet infrastructure to enhance the stealth and deniability of their actions.