Massive TheMoon bot campaign hits outdated routers, IoT devices

27 March 2024

Attacks with an updated TheMoon botnet variant have impacted more than 40,000 end-of-life small office and home office routers and Internet-of-Things devices across 88 countries during the first two months of 2024, while the botnet’s latest campaign earlier this month facilitated the compromise of over 6,000 Asus routers in less than three days, Security Affairs reports. Most of the bots have been leveraged to support the Faceless cybercrime proxy service, previously used by operators of the IcedID and SolarMarker botnets, with TheMoon fueling an almost 7,000 weekly user growth for the service, according to a report from Lumen Technologies’ Black Lotus Labs.

Source: SC Magazine

Date:

27 March 2024

Categorie(s):

NEWS

Tag(s):

IoT devices, IT, Massive, Network Security, News

Chinese government website security is often worryingly bad, say Chinese researchers3 May 2024
Security Excellence Awards – winners revealed!3 May 2024
McAfee Dominates AV-Comparatives PC Performance Test3 May 2024
Preparation: The Less Shiny Side of Incident Response – Joe Gross – ESW #3603 May 2024
CVE-2023-35729 – D-Link DAP-2622 DDP Reset Auth Username Stack-based Buffer Overflow Remote Code Execution …3 May 2024