New SOHO router malware aims for cloud accounts, internal company resources

Cuttlefish, a new malware family that targets enterprise-grade small office/home office (SOHO) routers, is used by criminals to steal account credentials / secrets for AWS, CloudFlare, Docker, BitBucket, Alibaba Cloud and other cloud-based services. “With the stolen key material, the actor not only retrieves cloud resources associated with the targeted entity but gains a foothold into that cloud ecosystem, ” Black Lotus Labs researchers noted. “To exfiltrate data, the threat actor first creates either a … More →

The post …

account accounts actor alibaba alibaba cloud aws bitbucket cloud cloud-based cloudflare cloud resources cloud storage credentials criminals cuttlefish data collection docker don't miss enterprise family home home office hot stuff internal key lumen malware material networking office resources router routers secrets services smbs soho soho router steal stolen trend micro trojan