The Latest in IT Security

SOHO Routers in North America and Europe Targeted With ‘ZuoRAT’ Malware

30
Jun
2022
SOHO Routers in North America and Europe Targeted With ‘ZuoRAT’ Malware

image credit: unsplash

Dubbed ZouRAT, the malware has been deployed on devices in North America and Europe, as part of a sophisticated campaign targeting remote workers, which might have been conducted by a state-sponsored threat actor. At least 80 entities might have been impacted, the researchers estimate.

The attacks, which started in October 2020, targeted known vulnerabilities in SOHO routers from ASUS, Cisco, DrayTek, and NETGEAR for initial access, which then allowed the attackers to enumerate additional devices on the network and move laterally to more systems.

Related posts:
  1. Malware writers take a page from the spam industry to evade detection
  2. Use of Windows XP makes European ATMs vulnerable to malware attacks
  3. New malware program Punkey targets point-of-sale systems
  4. XPCTRA financial malware leaves no stone unturned
  5. Analysis of half-a-billion emails reveals malware-less email attacks are on the rise

Read More

Tags:  
Written by Securityweek
0 Comments
Comments are closed.

Categories

FRIDAY, APRIL 26, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments