Thursday, August 13, 19:15
Home security Moobot Botnet: Infects fiber routers with zero-day vulnerability

Moobot Botnet: Infects fiber routers with zero-day vulnerability

Her researchers Qihoo 360 have discovered that Moobot Botnet has successfully spread to fiber routers with zero-day vulnerability, for remote code execution. Overall, they are affected by the same vulnerability nine suppliers.

Recent zero-day vulnerabilities in IoT devices
Researchers have noticed that in the last 30 days or so, several zero-day vulnerabilities in IoT devices have exploded. botnets. Zero-day vulnerability in the LILIN DVR became exploit for the spread of Chalubo, FBot and Moobot botnets. On February 13, 2020, the supplier corrected the vulnerability and released the latest software program 2.0b60_20200207. DrayTek routers as well as various devices are affected by zero-day vulnerabilities. On February 10, 2020, the router manufacturer issued a newsletter security, which contained corrections for these vulnerabilities and released the latest 1.5.1 hardware program.

Distribution of Moobot Botnet to fiber routers

On February 28, 2020, researchers observed that the Moobot botnet successfully exploited vulnerabilities to spread to fiber routers including the Netlink GPON. router. The researchers informed CNCERT about the zero-day vulnerabilities that affect many fiber routers. Moobot is a new type of botnet based on Mirai. Apart from Monet Botnet, other botnets such as Fbot botnet and Gafgyt botnets have failed to spread to fiber routers as it takes two steps to exploit a zero-day vulnerability. The first step involves another vulnerability and the second involves its use PoC available on Exploit db. Researchers have not publicly disclosed the first part of the vulnerability.

Patience in Exploitdb PoC

Type: remote command execution

Details: The function of the Ping () command in the Web / bin / boa server program, when processing the post request from / boaform / admin / forming, does not check the target_addr parameters before calling the ping commands of the system, thus making command injection possible. .

Finally, they are recommended for device users and production best practices so that they can directly control and update its firmware device as well as check if there are defaults accounts to be turned off.


Please enter your comment!
Please enter your name here

Every accomplishment starts with the decision to try.


The 20 best gaming consoles of all time

On the threshold of the new generation of consoles, such as the PlayStation 5 and the Xbox Series X, these are the most important and ...

Smart locks: Every home needs to have one!

Home security is a complex issue, but anything is safer than hiding a spare key in a very ...

LinkedIn: How do you record and display the pronunciation of your name?

Having a last name that almost no one pronounces correctly can sometimes be annoying. Thus, LinkedIn attempts ...

Cyber ​​attacks: 5 steps to deal with security incidents

Every organization is prone to cyber attacks and, when it happens, there is a small line between rescuing your network security and ...

Protect your personal data while on vacation

Have you had the chance to go on vacation and lose your passport, your wallet or other ...

How to get Snapchat on your computer

One of the most popular applications in recent years, Snapchat, has given many hours of fun and communication to its users. But did you know ...

Windows applications you need to delete for a better experience!

Some Windows applications are necessary for a computer to function properly, while others often cause problems. These are applications that ...

How to test the new data-saving video settings of Chrome 86?

If there's one issue with the upcoming Chrome 86 update, it seems to be efficiency. Users expect a ...

Netflix: How to change the language in profiles, subtitles and audio

Netflix is ​​not just an English-language streaming service with content from around the world. You can easily watch movies and ...

How to block spam calls and messages on Android?

Android can help you block and get rid of annoying spam calls. If you block ...