MikroTik vulnerability could be used to hijack 900,000 routers (CVE-2023-30799)

A privilege escalation vulnerability (CVE-2023-30799) could allow attackers to commandeer up to 900,000 MikroTik routers, says VulnCheck researcher Jacob Baines. While exploting it does require authentication, acquiring credentials to access the router… Continue reading MikroTik vulnerability could be used to hijack 900,000 routers (CVE-2023-30799)

Trickbot uses compromised MikroTik routers as C2 communication proxies

MikroTik routers are getting compromised to serve as communication proxies for Trickbot malware, to enable Trickbot-affected devices to communicate with their their C2 server in a way that standard network defense systems won’t detect, Microsoft … Continue reading Trickbot uses compromised MikroTik routers as C2 communication proxies

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

On Thursday evening, KrebsOnSecurity was the subject of a rather massive (and mercifully brief) distributed denial-of-service (DDoS) attack. The assault came from “Meris,” the same new “Internet of Things” (IoT) botnet behind record-shattering attacks against Russian search giant Yandex this week and internet infrastructure firm Cloudflare earlier this summer. Continue reading KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

415,000 routers infected by cryptomining malware – Prime target MikroTik

By Waqas
According to a new report, around 415,000 routers throughout the world are infected with malware having the potential to steal computer resources and discreetly mine for the cryptocurrency. The campaign is an active one and it primarily target… Continue reading 415,000 routers infected by cryptomining malware – Prime target MikroTik

Tenable, Google+, and Weak Passwords – Hack Naked News #192

 Tenable Researcher Reveals Extended MikroTik Router Vulnerability, Wi-Fi versions will get names people can actually understand, don’t accept Facebook’s 2nd friend request, Google Plus exposed 500,000 users data, Weak passwords are being … Continue reading Tenable, Google+, and Weak Passwords – Hack Naked News #192

MikroTik router vulnerability lets hackers bypass firewall to load malware undetected

By Waqas
Tenable Research’s cybersecurity researcher has released “By The way,” which is a new PoC (proof-of-concept) RCE attack after identifying a new attack method to exploit an already discovered vulnerability in MikroTik routers. The vulnerability… Continue reading MikroTik router vulnerability lets hackers bypass firewall to load malware undetected