Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Hortonworks

Hortonworks Vendor Cyber Rating & Cyber Score

hortonworks.com

Hortonworks is an industry leading innovator that creates, distributes and supports enterprise-ready open data platforms and modern data applications that deliver actionable intelligence from all data​: data-in-motion and data-at-rest. Hortonworks is focused on driving innovation in open source communities such as Apache Hadoop, NiFi and Spark. Along with its 1,600+ partners, Hortonworks provides the expertise, training and services that allow customers to unlock transformational value for their organizations across any line of business.


Hortonworks A.I CyberSecurity Scoring

Hortonworks
Company Information
Website:http://hortonworks.com
Employees number:126
Number of followers:97,199
NAICS:5112
Industry Type:Software Development
Homepage:hortonworks.com
Hortonworks Risk Score (AI oriented)
Between 700 and 749
logo
HortonworksSoftware Development
Updated:
01/07/2026
738/1000
Moderate
Ba
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
Hortonworks Global Score (TPRM)
xxxx
logo
HortonworksSoftware Development
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

Hortonworks
HortonworksModerate
Current Score
738Ba (MODERATE)
01000
1 incidents
-18 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
738Before Incident
JUNE 2026
738Before Incident
MAY 2026
738Before Incident
APRIL 2026
737Before Incident
MARCH 2026
737Before Incident
FEBRUARY 2026
754Before Incident
Cyber Attack
01 Feb 2026Hortonworks
Ruijie, TP-Link and Hadoop: RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS

RustDuck: A Stealthy, Rust-Based Botnet Targeting Routers and Servers

736After Incident
HIGH-18
RUITP-HOR1782865482
RustDuck: A Stealthy, Rust-Based Botnet Targeting Routers and Servers Researchers at QiAnXin’s XLab have uncovered RustDuck, a two-stage malware family actively hijacking home routers, IP cameras, Android devices, and poorly secured servers to build a distributed denial-of-service (DDoS) botnet. First tracked in February 2026, RustDuck stands out not for its current scale but for its rapid evolution and sophisticated evasion tactics. ### Infection Vectors RustDuck spreads through multiple well-known vulnerabilities, exploiting: - Default or weak credentials on Telnet and SSH services. - Unpatched flaws in devices from TVT (DVRs/cameras), Ruijie, TP-Link, ZTE, and Android debugging interfaces. - Vulnerable web software, including ThinkPHP, Jenkins, and Hadoop YARN. Over 20 IP addresses have been identified as distribution points, with the most active 176.65.139[.]204 sharing address space with a separate ADB-targeting botnet reported earlier in 2026. ### Evasion and Stealth RustDuck’s design prioritizes evasion, employing a two-stage infection process: 1. A lightweight loader decrypts and deploys a core module, increasingly rewritten in Rust a language that complicates reverse engineering compared to traditional C-based malware. 2. The core module performs extensive anti-analysis checks, including: - Detecting debuggers (e.g., Wireshark, gdb), virtual machines, and honeypots. - Testing for reserved IP responses to identify fake networks. - Comparing system clocks to detect sandbox time acceleration. Communication is encrypted using ChaCha20-Poly1305 and AES-GCM, with keys rotated every 10 minutes. Traffic mimics legitimate HTTPS to avoid detection. Command-and-control (C2) servers leverage dynamic DNS services like duckdns.org, allowing operators to issue DDoS commands, update malware, or switch C2 addresses. ### Broader Context RustDuck follows a growing trend of Rust-based botnets, such as RustoBot (documented in April 2025), which targeted routers for DDoS attacks. While smaller than record-breaking botnets like AISURU (3M+ devices, 30 Tbps attacks), RustDuck’s advanced techniques Rust rewrites and anti-analysis measures signal a shift toward more resilient malware. The botnet’s infrastructure overlaps with other DDoS operations, suggesting possible shared hosting or coordinated activity. Though currently limited in scale, its development pace and evasion methods could inspire future threats.
INCIDENT DETAILS -
TYPE
Botnet, DDoS
MOTIVATION
DDoS attacks, botnet expansion
IMPACT
Systems Affected: Home routers, IP cameras, Android devices, poorly secured serversOperational Impact: Potential DDoS attacks on targeted systems
JANUARY 2026
754Before Incident
DECEMBER 2025
754Before Incident
NOVEMBER 2025
754Before Incident
OCTOBER 2025
754Before Incident
SEPTEMBER 2025
754Before Incident
AUGUST 2025
754Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for Hortonworks ?
?
What was Hortonworks's A.I Rankiteo Cyber Score in June 2026 ?
?
What was Hortonworks's A.I Rankiteo Cyber Score in May 2026 ?
?
What was Hortonworks's A.I Rankiteo Cyber Score in April 2026 ?
?
What was Hortonworks's A.I Rankiteo Cyber Score in March 2026 ?
?
What was Hortonworks's A.I Rankiteo Cyber Score in February 2026 ?
?
What was Hortonworks's A.I Rankiteo Cyber Score in January 2026 ?
?
What was Hortonworks's A.I Rankiteo Cyber Score in December 2025 ?
?
What was Hortonworks's A.I Rankiteo Cyber Score in November 2025 ?
?
What was Hortonworks's A.I Rankiteo Cyber Score in October 2025 ?
?
What was Hortonworks's A.I Rankiteo Cyber Score in September 2025 ?
?
What was Hortonworks's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on Hortonworks's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with Hortonworks ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view Hortonworks's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?