Security researchers have discovered that hackers have publicly released the working code that exploits a zero-day vulnerability in a Huawei router model for free. The malware targets Huawei devices and has already been weaponised in botnet attacks Satori and Brickerbot. Javvad Malik, Security Advocate at AlienVault commented below.
Javvad Malik, Security Advocate at AlienVault:
It’s not unusual for criminals to share exploit techniques amongst each other, or even release publicly for anyone to utilise.
It highlights the importance for enterprises and security researchers to do the same and share threat indicators and data amongst each other so as to be able to better defend against the ever-increasing number of attacks.
With IoT devices, the challenge is for enterprises to be able to protect or patch them, or utilise threat data to be able to detect where devices may be compromised.
Below are pulses relating to Satori through AlienVault’s Open Threat Exchange (OTX):
https://otx.alienvault.com/pulse/59614a6500d5484424db46f2
https://otx.alienvault.com/pulse/5a28218b08ccdd136e2f4695
https://otx.alienvault.com/pulse/5a41b4d6e7b3fd765094fbb7
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.