Business-grade routers compromised in low-key attack campaign

An unknown threat actor has discreetly compromised business-grade DrayTek routers in Europe, Latin and North America, equipping them with a remote access trojan (dubbed HiatusRAT) and a packet capturing program. “The impacted models are high-bandwidth routers that can support VPN connections for hundreds of remote workers and offer ideal capacity for the average, medium-sized business. We suspect the actor infects targets of interest for data collection, and targets of opportunity for the purpose of establishing … More →

The post …

access actor america attack bandwidth botnet business campaign collection compromised connections data data collection don't miss draytek europe hardware hiatusrat high hot stuff interest key low lumen malware medium network north north america offer opportunity packet program remote access remote access trojan remote workers router routers smbs support threat threat actor trojan vpn workers