A year-old vulnerability continues to add to the inventory of cybercriminals.
Informs Fortinet that attackers continue to exploit a year-old vulnerability in TP-Link routers, adding routers to various botnets to conduct DDoS attacks.
The command injection vulnerability CVE-2023-1389 (CVSS score: 8.8) was discovered in December 2022 at the Pwn2Own event in Toronto and patched in March 2023. The bug affects the popular TP-Link Archer AX21 model, which has long been the target of botnet operators.
Fortinet Telemetry
Fortinet has seen numerous attacks using this flaw, including malware from the Mirai and Condi botnets . Malicious code allows hackers to gain control over devices to perform DDoS attacks.
In April 2023, it became known that cybercriminals took advantage of the same vulnerability to attack TP-Link routers located mainly in Eastern Europe, and added them to the Mirai botnet.
Experts ask users to be vigilant against DDoS botnets and apply timely fixes to protect their network environment from infection and prevent routers from becoming bots.
Informs Fortinet that attackers continue to exploit a year-old vulnerability in TP-Link routers, adding routers to various botnets to conduct DDoS attacks.
The command injection vulnerability CVE-2023-1389 (CVSS score: 8.8) was discovered in December 2022 at the Pwn2Own event in Toronto and patched in March 2023. The bug affects the popular TP-Link Archer AX21 model, which has long been the target of botnet operators.
Fortinet Telemetry
Fortinet has seen numerous attacks using this flaw, including malware from the Mirai and Condi botnets . Malicious code allows hackers to gain control over devices to perform DDoS attacks.
In April 2023, it became known that cybercriminals took advantage of the same vulnerability to attack TP-Link routers located mainly in Eastern Europe, and added them to the Mirai botnet.
Experts ask users to be vigilant against DDoS botnets and apply timely fixes to protect their network environment from infection and prevent routers from becoming bots.
