BTC $58270.6324
ETH $3301.4664
BNB $400.6794
SOL $110.0515
XRP $0.5824
ADA $0.6271
AVAX $39.6830
DOGE $0.0970
TRX $0.1429
wstETH $3808.1443
DOT $8.3586
LINK $19.1334
WETH $3305.4834
MATIC $1.0428
UNI $11.0186
WBTC $57881.0446
IMX $3.3465
ICP $13.0316
BCH $301.2119
LTC $74.8427
CAKE $3.2026
ETC $28.3635
FIL $7.9610
LEO $4.4139
RNDR $7.4060
KAS $0.1700
HBAR $0.1136
DAI $1.0002
ATOM $11.3163
INJ $41.0291
VET $0.0502
TON $2.1419
OKB $51.8401
STX $3.2222
LDO $3.5190
FDUSD $0.9951
XMR $138.3902
XLM $0.1221
ARB $1.8935
NEAR $3.9358
TIA $16.9317
GRT $0.2829
WEMIX $2.2582
ENS $22.5313
MKR $2167.8555
APEX $2.4646
THETA $1.9298
BTC $58270.6324
ETH $3301.4664
BNB $400.6794
SOL $110.0515
XRP $0.5824
ADA $0.6271
AVAX $39.6830
DOGE $0.0970
TRX $0.1429
wstETH $3808.1443
DOT $8.3586
LINK $19.1334
WETH $3305.4834
MATIC $1.0428
UNI $11.0186
WBTC $57881.0446
IMX $3.3465
ICP $13.0316
BCH $301.2119
LTC $74.8427
CAKE $3.2026
ETC $28.3635
FIL $7.9610
LEO $4.4139
RNDR $7.4060
KAS $0.1700
HBAR $0.1136
DAI $1.0002
ATOM $11.3163
INJ $41.0291
VET $0.0502
TON $2.1419
OKB $51.8401
STX $3.2222
LDO $3.5190
FDUSD $0.9951
XMR $138.3902
XLM $0.1221
ARB $1.8935
NEAR $3.9358
TIA $16.9317
GRT $0.2829
WEMIX $2.2582
ENS $22.5313
MKR $2167.8555
APEX $2.4646
THETA $1.9298
  • Catalog
  • Blog
  • Tor Relay
  • Jabber
  • One-Time notes
  • Temp Email
  • What is TOR?
  • We are in tor
  • [Zerobot UPDATED] Zerobot malware can spread using vulnerabilities in Apache now


    The DDoS capabilities of the botnet have also been upgraded.

    The Microsoft Defender research team has noticed that the Zerobot malware has received an update - now it infects devices more effectively using vulnerabilities for Internet-facing Apache servers, and has also received a new set of functions for conducting DDoS attacks.

    The malware appeared in mid-November of this year. His "calling card" was the ability to self-propagate in the networks of victims.

    Since the beginning of December, exploits for vulnerabilities in phpMyAdmin servers, Dasan GPON routers, and D-Link DSL-2750B routers have disappeared from Zerobot, Microsoft researchers say.

    The old exploits have been replaced by new ones – now the malware supports ICMP, SYN, SYN-ACK, Xmas and UDP flood attacks with the ability to customize the packet payload. In addition, Zerobot learned to attack seven new types of devices and software, including vulnerable Apache and Apache Spark servers.

    Full list of vulnerabilities exploited by Zerobot:

    CVE-2017-17105 : Zivif PR115-204-P-RS
    CVE-2019-10655 : Grandstream
    CVE-2020-25223 : Sophos SG UTM
    CVE-2021-42013 : Apache
    CVE-2022-31137 : Roxy-WI
    CVE-2022-33891 : Apache Spark
    ZSL-2022-5717 : MiniDVBLinux

    "We have found new evidence that Zerobot is being distributed by compromising devices using known vulnerabilities that are not included in the malware binary. For example, CVE-2022-30023: command injection vulnerability in Tenda GPON AC1200 routers," the researchers said.

    Author DeepWeb
    New GoTrim botnet brute forces passwords of WordPress site administrators
    Ukrainian government networks exposed using trojanized Windows 10 installers

    Comments 0

    Add comment