TP-Link Router Botnet

Read Time:37 Second

There is a new botnet that is infecting TP-Link routers:

The botnet can lead to command injection which then makes remote code execution (RCE) possible so that the malware can spread itself across the internet automatically. This high severity security flaw (tracked as CVE-2023-1389) has also been used to spread other malware families as far back as April 2023 when it was used in the Mirai botnet malware attacks. The flaw also linked to the Condi and AndroxGh0st malware attacks.

[…]

Of the thousands of infected devices, the majority of them are concentrated in Brazil, Poland, the United Kingdom, Bulgaria and Turkey; with the botnet targeting manufacturing, medical/healthcare, services and technology organizations in the United States, Australia, China and Mexico.

Details.

Compliance without Complexity

Cloudflare Introduces E2E Post-Quantum Cryptography Protections

UK’s Online Safety Act: Ofcom Can Now Issue Sanctions

Researchers Confirm BlackLock as Eldorado Rebrand

Improvements in Brute Force Attacks

US Legislators Demand Transparency in Apple’s UK Backdoor Court Fight

£1M Lost as UK Social Media and Email Account Hacks Skyrocket

Security Database Aims to Empower Non-Profits

Tj-actions Supply Chain Attack Exposes 23,000 Organizations