Dismiss this notice
Ashampoo Photo Optimizer 7 New Year 2019 Giveaway-https://www.geeks.fyi/showthread.php?tid=4948

Dismiss this notice
MakeUSLaugh_HitmanPro.Alert New Year 2019 Giveaway- https://www.geeks.fyi/showthread.php?tid=4946

Dismiss this notice
Ashampoo Burning Studio 20 New Year 2019 Giveaway- https://www.geeks.fyi/showthread.php?tid=4947

Dismiss this notice
PowerISO New Year 2019 Giveaway - https://www.geeks.fyi/showthread.php?tid=5170


Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Spam Botnet of Over 100K Routers Abuses UPnP
#1
Quote:Security researchers have uncovered a major new botnet of over 100,000 compromised machines, made up mainly of home routers with UPnP enabled.

Netlab 360 researchers Hui Wang and ‘RootKiter’ explained in a blog post that the main target is a vulnerability in the UPnP feature from Broadcom, which is widely available: in fact, 116 infected device models were found. These included routers made by D-Link, Linksys, ZTE, TP-Link, Zyxel, Technicolor and many more.

“The interaction between the botnet and the potential target takes multiple steps, it starts with tcp port 5431 destination scan, then moving on to check target’s UDP port 1900 and wait for the target to send the proper vulnerable URL,” they explained.

“After getting the proper URL, it takes another four packet exchanges for the attacker to figure out where the shellcode's execution start address in memory is so a right exploit payload can be crafted and fed to the target.”

Source: https://www.infosecurity-magazine.com/ne...k-routers/
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Latest Threads
WhatsApp caps message forwarding to five...
Last Post: silversurfer
Today 11:56
» Replies: 0
» Views: 19
What is your PC's security setup?
Last Post: Toligo
Today 10:42
» Replies: 24
» Views: 2181
Fake Android Navigation Apps Spam You wi...
Last Post: tarekma7
Today 10:27
» Replies: 0
» Views: 21
6 Reasons We Need to Boost Cybersecurity...
Last Post: tarekma7
Today 10:22
» Replies: 0
» Views: 28
Apeaksoft MobieTrans 1.1.6
Last Post: Toligo
Today 08:48
» Replies: 0
» Views: 18
[Android][App] The Big Ashampoo® App Par...
Last Post: Raur
Today 08:19
» Replies: 0
» Views: 27
A first look at Windows Sandbox
Last Post: Raur
Today 07:47
» Replies: 2
» Views: 87
Twitter admits bug exposed some Android ...
Last Post: Raur
Today 07:35
» Replies: 3
» Views: 47
What is your favourite AntiVirus?
Last Post: osmandemi
Today 07:24
» Replies: 13
» Views: 232
Temporary micropatch available for zero-...
Last Post: Raur
Today 07:16
» Replies: 0
» Views: 36
Malwarebytes Fixes Windows 7 Freeze Prob...
Last Post: Raur
Today 07:08
» Replies: 2
» Views: 33
NordVPN Breaking Your Privacy
Last Post: Raur
Today 06:45
» Replies: 0
» Views: 28
Nvidia GTX 1660 Ti Reportedly Up To 19 P...
Last Post: DTinn8
Today 05:58
» Replies: 0
» Views: 17
Microsoft Employee Hints at Windows Core...
Last Post: DTinn8
Today 05:54
» Replies: 0
» Views: 28
Free VPN Risk Index: Android Apps
Last Post: DTinn8
Today 05:49
» Replies: 1
» Views: 28
O&O DiskImage Professional v14 Review
Last Post: DTinn8
Today 05:44
» Replies: 7
» Views: 238
Revo Uninstaller 3 PRO
Last Post: Raur
Today 05:29
» Replies: 3
» Views: 50
[Official] O&O DiskImage 14 Professional...
Last Post: DTinn8
Today 05:27
» Replies: 24
» Views: 1393
WinRAR 5.60 Review
Last Post: Raur
Today 05:14
» Replies: 5
» Views: 479
[Official] CheckMAL's AppCheck Pro Chris...
Last Post: dinosaur07
Today 00:03
» Replies: 12
» Views: 751

[-]
Staffs Online
harlan4096's profile harlan4096
Administrator