Mirai Botnet Exploiting Zero-Days in Routers and NVRs for Massive DDoS Attacks

An active malware campaign is leveraging two zero-day vulnerabilities with remote code execution (RCE) functionality to rope routers and video recorders into a Mirai-based distributed denial-of-service (DDoS) botnet.



"The payload targets routers and network video recorder (NVR) devices with default admin credentials and installs Mirai variants when successful," Akamai said in an advisory published this week.



Details of the flaws are currently under wraps to allow the two vendors to publish patches and prevent other threat actors from abusing them. …

admin attacks botnet campaign code code execution credentials cybersecurity ddos ddos attacks default devices distributed exploiting malware malware campaign mirai mirai botnet network network video nvr payload rce remote code remote code execution routers service video video recorder vulnerabilities zero-day zero-days zero-day vulnerabilities