13 October 18, 09:57
Quote:MikroTik, a Latvian routers and ISP wireless system maker, had quite a bad year with their routers suffering from several different security vulnerabilities which allowed attackers to enroll them in cryptojacking campaigns and huge botnets of hundreds of thousands of devices.
It seems that Mikrotik can't catch a break seeing that Malwarebytes Labs found out today about a new malware campaign involving MikroTik routers designed once again to infect them with a CoinHive miner payload and set them up for a new cryptojacking career.
More exactly, attackers are able to compromise MikroTik's routers using malicious tools designed to exploit the CVE-2018-14847 authentication bypass vulnerability in routers running RouterOS up to 6.42 and the CVE-2018-7445 buffer overflow bug in RouterOS up to 6.41.3/6.42rc27.
Source: https://news.softpedia.com/news/almost-1...3227.shtml
![[-]](https://www.geeks.fyi/images/collapse.png)
