Unpatched AVTECH IP Camera Flaw Exploited by Hackers for Botnet Attacks

A years-old high-severity flaw impacting AVTECH IP cameras has been weaponized by malicious actors as a zero-day to rope them into a botnet. CVE-2024-7029 CVSS score: 8.7, the vulnerability in question, is a "command injection vulnerability found in the brightness function of AVTECH closed-circui...

CISA Flags Critical Apache OFBiz Flaw Amid Active Exploitation Reports

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Tuesday added a critical security flaw affecting the Apache OFBiz open-source enterprise resource planning ERP system to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation in the wild. The...

Beware the Unpatchable: Corona Mirai Botnet Spreads via Zero-Day

...

Beware the Unpatchable: Corona Mirai Botnet Spreads via Zero-Day

...

BYOB 安全漏洞

BYOB Build Your Own Botnet is an open source post-development framework for students, researchers and developers by malwaredllc individual developers. A security vulnerability exists in version 2.0 of BYOB, which stems from the inclusion of an arbitrary file write issue...

PT-2024-31512 · Byob · Byob

Name of the Vulnerable Software and Affected Versions: BYOB Build Your Own Botnet version 2.0 Description: An arbitrary file write issue in the exfiltration endpoint allows attackers to overwrite SQLite databases and bypass authentication via an unauthenticated HTTP request with a crafted...

CVE-2024-45163

The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC command and control server. Unauthenticated sessions remain open, causing resource consumption. For example, an attacker can send a recognized username such as root, or can send arbitrary data...

CVE-2024-45163

The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC command and control server. Unauthenticated sessions remain open, causing resource consumption. For example, an attacker can send a recognized username such as root, or can send arbitrary data...

Mirai Botnet 安全漏洞

Mirai Botnet is a leaked Mirai source code by Jerry Gamblin personal developer. It is used for research purposes in order to develop IoT and more. A security vulnerability exists in Mirai Botnet version 2024-08-19 and prior versions, which stems from a mishandled simultaneous TCP connection to a...

CVE-2024-45163

CVE-2024-45163 concerns the Mirai botnet codebase where simultaneous TCP connections to the CNC server are mishandled, leaving unauthenticated sessions open and allowing resource consumption. Affected: Mirai botnet (through 2024-08-19) with unauthenticated sessions that can be triggered by sendin...

CVE-2024-45163

The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC command and control server. Unauthenticated sessions remain open, causing resource consumption. For example, an attacker can send a recognized username such as root, or can send arbitrary data...

PT-2024-31446

Name of the Vulnerable Software and Affected Versions Mirai botnet versions prior to 2024-08-19 Description The Mirai botnet through 2024-08-19 exhibits improper handling of simultaneous TCP connections to the command and control CNC server. This allows unauthenticated sessions to remain open,...

Build Your Own Botnet 2.0.0 Remote Code Execution Exploit

Build Your Own Botnet BYOB version 2.0.0 exploit that works by spoofing an agent callback to overwrite the sqlite database and bypass authentication and exploiting an authenticated command injection in the payload builder page. Exploit Title: BYOB Build Your Own Botnet v2.0.0 Unauthenticated RCE...

New Gafgyt Botnet Variant Targets Weak SSH Passwords for GPU Crypto Mining

Cybersecurity researchers have discovered a new variant of the Gafgyt botnet that's targeting machines with weak SSH passwords to ultimately mine cryptocurrency on compromised instances using their GPU computational power. This indicates that the "IoT botnet is targeting more robust servers runni...

Mirai Botnet targeting OFBiz Servers Vulnerable to Directory Traversal

Enterprise Resource Planning ERP Software is at the heart of many enterprising supporting human resources, accounting, shipping, and manufacturing. These systems can become very complex and difficult to maintain. They are often highly customized, which can make patching difficult. However, critic...

CVE-2024-7029

Commands can be injected over the network and executed without authentication. Recent assessments: ccondon-r7 at September 17, 2024 11:39pm UTC reported: TL;DR: Unpatched command injection vulnerability in an end-of-life IP camera, being exploited to drop a Mirai botnet malware variant. Public Po...

PT-2024-5360

Name of the Vulnerable Software and Affected Versions AVTECH AVM1203 versions prior to the latest supported version AVTECH IP cameras affected versions not specified Description The issue is related to a command injection vulnerability found in the brightness function of AVTECH closed-circuit...

PT-2024-5979 · Mitel · Mitel 6900 Series +2

Name of the Vulnerable Software and Affected Versions: Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Conference Unit, versions through R6.4.0.HF1 R6.4.0.136 Description: A vulnerability in the Mitel SIP phones could allow an authenticated attacker with...

Unveiling the 2024 Imperva DDoS Threat Landscape Report

In the ever-changing landscape of cybersecurity, Distributed Denial of Service DDoS attacks continue to be a significant threat. To help organizations stay ahead, were excited to introduce the 2024 Imperva DDoS Threat Landscape Report. This comprehensive report offers a deep dive into DDoS attack...

New Golang Botnet “Zergeca” Discovered, Delivers Brutal DDoS Attacks

New Golang botnet "Zergeca" evades detection and launches DDoS attacks. Ensure your IoT devices are fully patched against…...