Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-21742

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.01077EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/08/03 12:0 a.m.6 views

Analyzing the Mirai IoT Botnet and Its Recent Variants: Satori, Mukashi, Moobot, and Sonic

Mirai is undoubtedly one of the most significant Internet of Things IoT botnet attacks in history. In terms of its detrimental effects, seamless spread, and low detection rate, it surpassed its predecessors. Its developers released the source code, which triggered the development of several...

7.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/18 9:58 p.m.10 views

CVE-2025-34129

A command injection vulnerability exists in LILIN Digital Video Recorder DVR devices prior to firmware version 2.0b6020200207 due to insufficient sanitization of the FTP and NTP Server fields in the service configuration. An attacker with access to the configuration interface can upload a malicio...

8.7CVSS8.1AI score0.01077EPSS
Exploits0References1
NVD
NVD
added 2025/07/16 10:15 p.m.9 views

CVE-2025-34129

A command injection vulnerability exists in LILIN Digital Video Recorder DVR devices prior to firmware version 2.0b6020200207 due to insufficient sanitization of the FTP and NTP Server fields in the service configuration. An attacker with access to the configuration interface can upload a malicio...

8.7CVSS0.01077EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/16 9:26 p.m.10 views

CVE-2025-34129 LILIN DVR RCE via Malicious FTP/NTP Configuration

A command injection vulnerability exists in LILIN Digital Video Recorder DVR devices prior to firmware version 2.0b6020200207 due to insufficient sanitization of the FTP and NTP Server fields in the service configuration. An attacker with access to the configuration interface can upload a malicio...

8.7CVSS0.01077EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/07/16 9:26 p.m.3 views

CVE-2025-34129 LILIN DVR RCE via Malicious FTP/NTP Configuration

A command injection vulnerability exists in LILIN Digital Video Recorder DVR devices prior to firmware version 2.0b6020200207 due to insufficient sanitization of the FTP and NTP Server fields in the service configuration. An attacker with access to the configuration interface can upload a malicio...

8.7CVSS7.3AI score0.01077EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2025/07/16 9:26 p.m.4 views

CVE-2025-34129

A command injection vulnerability exists in LILIN Digital Video Recorder DVR devices prior to firmware version 2.0b6020200207 due to insufficient sanitization of the FTP and NTP Server fields in the service configuration. An attacker with access to the configuration interface can upload a malicio...

8.7CVSS5.8AI score0.01077EPSS
Exploits0References4
CVE
CVE
added 2025/07/16 9:26 p.m.44 views

CVE-2025-34129

CVE-2025-34129 affects LILIN Digital Video Recorder (DVR) devices prior to firmware 2.0b60_20200207. The root cause is insufficient sanitization of the FTP and NTP Server fields in the service configuration, allowing an attacker with access to the configuration interface to upload a malicious XML...

8.7CVSS7.3AI score0.01077EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2024/02/28 5:47 a.m.103 views

Cybersecurity Agencies Warn Ubiquiti EdgeRouter Users of APT28's MooBot Threat

In a new joint advisory, cybersecurity and intelligence agencies from the U.S. and other countries are urging users of Ubiquiti EdgeRouter to take protective measures, weeks after a botnet comprising infected routers was felled by law enforcement as part of an operation codenamed Dying Ember. The...

9.8CVSS9.7AI score0.97408EPSS
Exploits18
The Hacker News
The Hacker News
added 2024/02/16 6:49 a.m.51 views

U.S. Government Disrupts Russia-Linked Botnet Engaged in Cyber Espionage

The U.S. government on Thursday said it disrupted a botnet comprising hundreds of small office and home office SOHO routers in the country that was put to use by the Russia-linked APT28 actor to conceal its malicious activities. "These crimes included vast spear-phishing and similar credential...

9.8CVSS9.8AI score0.97408EPSS
Exploits18
The Hacker News
The Hacker News
added 2023/11/16 6:6 a.m.76 views

Russian Hackers Linked to 'Largest Ever Cyber Attack' on Danish Critical Infrastructure

Russian threat actors have been possibly linked to what's been described as the "largest cyber attack against Danish critical infrastructure," in which 22 companies associated with the operation of the country's energy sector were targeted in May 2023. "22 simultaneous, successful cyberattacks...

9.8CVSS7.5AI score0.99284EPSS
Exploits8
OpenVAS
OpenVAS
added 2023/05/23 12:0 a.m.36 views

D-Link Multiple DIR Devices Multiple Vulnerabilities (Sep 2022)

Multiple D-Link DIR devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9AI score
Exploits0References6
OpenVAS
OpenVAS
added 2023/05/23 12:0 a.m.17 views

D-Link DAP-1522 Devices Multiple Vulnerabilities (Sep 2022)

D-Link DAP-1522 devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8AI score
Exploits0References5
hivepro
hivepro
added 2023/04/07 6:43 a.m.13 views

Botnets Actively Exploited Realtek and Cacti Flaws

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Attacks surged exploiting Cacti and Realtek vulnerabilities, resulting in the spread of ShellBot and Moobot malware. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/04/01 4:51 a.m.107 views

Cacti, Realtek, and IBM Aspera Faspex Vulnerabilities Under Active Exploitation

Critical security flaws in Cacti, Realtek, and IBM Aspera Faspex are being exploited by various threat actors in hacks targeting unpatched systems. This entails the abuse of CVE-2022-46169 CVSS score: 9.8 and CVE-2021-35394 CVSS score: 9.8 to deliver MooBot and ShellBot aka PerlBot, Fortinet...

10CVSS10.3AI score0.99968EPSS
Exploits55
HackRead
HackRead
added 2022/09/07 3:38 p.m.10 views

Mirai botnet resurfaces with MooBot variant to target D-Link devices

By Deeba Ahmed The botnet is exploiting four different vulnerabilities in D-Link devices. This is a post from HackRead.com Read the original post: Mirai botnet resurfaces with MooBot variant to target D-Link devices...

3AI score
Exploits0
The Hacker News
The Hacker News
added 2022/09/07 6:57 a.m.99 views

Mirai Variant MooBot Botnet Exploiting D-Link Router Vulnerabilities

A variant of the Mirai botnet known as MooBot is co-opting vulnerable D-Link devices into an army of denial-of-service bots by taking advantage of multiple exploits. "If the devices are compromised, they will be fully controlled by attackers, who could utilize those devices to conduct further...

10CVSS2.6AI score0.97101EPSS
Exploits4
Securelist
Securelist
added 2022/02/10 10:0 a.m.363 views

DDoS attacks in Q4 2021

News roundup Q4 2021 saw the appearance of several new DDoS botnets. A zombie network, named Abcbot by researchers, first hit the radar in July, but at the time it was little more than a simple scanner attacking Linux systems by brute-forcing weak passwords and exploiting known vulnerabilities. I...

10CVSS10AI score0.99999EPSS
Exploits405
ThreatPost
ThreatPost
added 2021/12/08 8:13 p.m.107 views

Moobot Botnet Chews Up Hikvision Surveillance Systems

Although a patch was released in September, any still-vulnerable Hikvision IP Network Video Recorder NVR products are being actively targeted by the Mirai-based botnet known as Moobot. FortiGuard Labs has released a report detailing how the Moobot botnet is leveraging a known remote code executio...

9.8CVSS9AI score0.99869EPSS
Exploits23References17
ThreatPost
ThreatPost
added 2021/06/14 5:43 p.m.378 views

Moobot Milks Tenda Router Bugs for Propagation

A variant of the Mirai botnet called Moobot saw a big spike in activity recently, with researchers picking up widespread scanning in their telemetry for a known vulnerability in Tenda routers. It turns out that it was being pushed out from a new cyber-underground malware domain, known as Cyberium...

10CVSS9.2AI score0.99975EPSS
Exploits10References10
Rows per page
Query Builder