Malware Author Builds 18,000-Strong Botnet in a Day
A malware author has built a huge botnet comprised of over 18,000 routers in the span of only one day.
This new botnet has been spotted yesterday by security researchers from NewSky Security, and their findings have been confirmed today by Qihoo 360 Netlab, Rapid7, and Greynoise.
[...] The botnet has been built by exploiting a vulnerability in Huawei HG532 routers, tracked as CVE-2017-17215.
Scans for this vulnerability, which can be exploited via port 37215, started yesterday morning, July 18, according to data collected by Netlab's NetScan system.
[...] Wicked/Anarchy is a well-known malware author who, in the past, has created variations of the Mirai IoT malware. These variations and their respective botnets were known as Wicked, Omni, and Owari (Sora), and had been previously used for DDoS attacks.
[...] But Anarchy is not done yet. The botnet author told Anubhav that he also plans to target CVE-2014-8361, a vulnerability in Realtek routers exploitable via port 52869.
One day in the bright future, everything connected to the internet will be magically supported forever by updates from the manufacturer. No more malware. The intarweb tubes will be one giant safe space with rainbows and unicorns for all.
(Score: 5, Funny) by fyngyrz on Saturday July 21 2018, @04:35PM
You do know that unicorns have a vulnerability exploitable by virgins, right?
And these people are programmers, so...