r A new malware campaign has targeted edge devices from prominent manufacturers, including Cisco, ASUS, QNAP, and Synology, with the objective of creating a botnet dubbed PolarEdge. Observations by French cybersecurity firm Sekoia reveal the use of a critical security flaw (CVE-2023-20118) to deploy a backdoor on vulnerable devices since at least late 2023. This highlights the urgent need for prompt patching and strengthened security measures across these affected systems to prevent further exploitation. As the threat landscape evolves, it is essential to foster collaboration between industry stakeholders and governments to combat emerging malicious activities.
Key Points
The increasing vulnerability of edge devices to malware attacks, highlighting the need for manufacturers to prioritize security updates and patches.r
The rise of botnets and their potential impact on global networks and infrastructure, emphasizing the importance of cooperation between cybersecurity companies and governments to combat this threat.r
The importance of staying informed about known vulnerabilities and actively managing device security to prevent exploitation.
Advertisement
Original Article
A new malware campaign has been observed targeting edge devices from Cisco, ASUS, QNAP, and Synology to rope them into a botnet named PolarEdge since at least the end of 2023.
French cybersecurity company Sekoia said it observed the unknown threat actors deploying a backdoor by leveraging CVE-2023-20118 (CVSS score: 6.5), a critical security flaw impacting Cisco Small Business RV016, RV042,
Comments