‘Amnesia’ IoT botnet continues to take advantage of year-old unpatched vulnerability

In order for any information about scammers to be useful, it needs to be brought to public attention as soon as available. That's what this section is for. Post scammers or "suspect" scammers here...before they get away with scamming someone else!

Moderators: HH, Saul, Sasha

Post Reply
User avatar
Saul
The Editor
The Editor
Posts: 1020
Joined: Sat Mar 15, 2003 1:00 am
Contact:

‘Amnesia’ IoT botnet continues to take advantage of year-old unpatched vulnerability

Post by Saul » Sun Apr 30, 2017 7:14 pm

Hackers have created a new variant of the IoT/Linux botnet “Tsunami” that exploits a year-old but as yet unresolved vulnerability.

The Amnesia botnet targets an unpatched remote code execution vulnerability that was publicly disclosed more than a year ago in DVR (digital video recorder) devices made by TVT Digital and branded by over 70 vendors worldwide.

The vulnerability affects around 227,000 devices worldwide with Taiwan, the United States, Israel, Turkey, and India being the most exposed.

The Amnesia botnet is yet to be use to mount a large-scale attack but the potential for harm is very real.

“Amnesia exploits this remote code execution vulnerability by scanning for and attacking vulnerable systems. “A successful attack results in Amnesia gaining full control of the device.

Attackers could potentially harness the Amnesia botnet to launch wide ranging DDoS attacks similar to the Mirai botnet attacks that were seen in the latter half of 2016.Amnesia BotNet
Saul
Antiscam Admin
Post Reply