Security researchers have discovered that hackers have publicly released the working code that exploits a zero-day vulnerability in a Huawei router model for free. The malware targets Huawei devices and has already been weaponised in botnet attacks Satori and Brickerbot. Javvad Malik, Security Advocate at AlienVault commented below.
Javvad Malik, Security Advocate at AlienVault:
It’s not unusual for criminals to share exploit techniques amongst each other, or even release publicly for anyone to utilise.
It highlights the importance for enterprises and security researchers to do the same and share threat indicators and data amongst each other so as to be able to better defend against the ever-increasing number of attacks.
With IoT devices, the challenge is for enterprises to be able to protect or patch them, or utilise threat data to be able to detect where devices may be compromised.
Below are pulses relating to Satori through AlienVault’s Open Threat Exchange (OTX):
https://otx.alienvault.com/pulse/59614a6500d5484424db46f2
