Researchers Uncover One Other Mirai Variant Focusing On New IoT Vulnerabilities
Safety researchers from Palo Alto Networks have found one other Mirai variant that is concentrating on new IoT vulnerabilities. Researchers from Unit 42, the cybersecurity division of Palo Alto Networks, found a number of assaults on Feb 16th, 2021 that leveraged vulnerabilities including: VisualDoor (a SonicWall SSL-VPN exploit). CVE-2020-25506 (a D-Link DNS-320 firewall exploit). CVE-2020-26919 (a Netgear ProSAFE Plus exploit). - Possibly CVE-2019-19356 (a Netis WF2419 wireless router exploit). - Three other IoT vulnerabilities yet to be identified. “Upon profitable exploitation, the attackers attempt to download a malicious shell script, which contains further infection behaviors corresponding to downloading and executing Mirai variants and brute-forcers,” wrote the Unit forty two researchers in a weblog put up. The researchers discovered that one of many IPs concerned in the assault was up to date on Feb 23rd to benefit from two newer vulnerabilities - CVE-2021-27561 and CVE-2021-2