|
Evolving Quad7 Botnet Exploits SOHO Routers and VPN Devices, Researchers Warn
SOHO Routers and VPN Devices, Researchers Warn | CyberPro Magazine
(Source-thehackernews.com)
The operators behind the Quad7 botnet are rapidly advancing their techniques, targeting various brands of SOHO routers and VPN appliances by exploiting both known and undiscovered security vulnerabilities. French cybersecurity company Sekoia recently reported that devices from well-known manufacturers like TP-LINK, Zyxel, Asus, Axentra, D-Link, and NETGEAR have been compromised by this increasingly sophisticated botnet.
Expansion and Toolset Evolution
According to Sekoia researchers Felix Aimé, Pierre-Antoine D., and Charles M., the Quad7 botnet operators are not only expanding their target base but also evolving their tactics. The team observed the introduction of a new backdoor and the use of advanced protocols, likely aimed at enhancing stealth and evading detection from operational relay boxes (ORBs) that track
|