[Home]  [Headlines]  [Latest Articles]  [Latest Comments]  [Post]  [Sign-in]  [Mail]  [Setup]  [Help] 

Status: Not Logged In; Sign In

This is an Easy Case SCOTUS Takes On The UN and Mexico's Gun Control Alliance!

Would China Ever Invade Russia? Examining a Possible Scenario

Why Putin Can NEVER Use a Nuclear Weapon

Logical Consequence of Freedom4um point of view

Tucker Carlson: This current White House is being run by Satan, not human beings

U.S. Submarines Are Getting a Nuclear Cruise Missile Strike Capability: Destroyers Likely to Follow

Anti-Gun Cat Lady ATTACKS Congress Over Mexico & The UN!

Trump's new border czar will prioritize finding 300,000 missing migrant children who could be trafficking victims

Morgan Stanley: "If Musk Is Successful In Streamlining Government, It Would Broaden Earnings Growth And Stock Performance"

Bombshell Fauci Documentary Nails The Whole COVID Charade

TRUTH About John McCain's Service - Forgotten History

Bombshell Fauci Documentary Nails The Whole COVID Charade

Joe Rogan expressed deep concern that Joe Biden and Ukrainian President Zelensky will start World War III

Fury in Memphis after attempted murder suspect who ambushed FedEx employee walks free without bail

Tehran preparing for attack against Israel: Ayatollah Khamenei's aide

Huge shortage plagues Israeli army as losses mount in Lebanon, Gaza

Researchers Find Unknown Chemical In Drinking Water Posing "Potential Human Health Concern"

Putin visibly ‘shocked’ by US green-light for long-range missiles to strike inside Russia

The Problem of the Bitcoin Billionaires

Biden: “We’re leaving America in a better place today than when we came into office four years ago … "

Candace Owens: Gaetz out, Bondi in. There's more to this than you think.

OMG!!! Could Jill Biden Be Any MORE Embarrassing??? - Anyone NOTICE This???

Sudden death COVID vaccine paper published, then censored, by The Lancet now republished with peer review

Russian children returned from Syria

Donald Trump Indirectly Exposes the Jewish Neocons Behind Joe Biden's Nuclear War

Key European NATO Bases in Reach of Russia's Oreshnik Hypersonic Missile

Supervolcano Alert in Europe: Phlegraean Fields Activity Sparks Scientists Attention (Mass Starvation)

France reacted to the words of a US senator on sanctions against allies

Trump nominates former Soros executive for Treasury chief

SCOTUS asked to review if Illinois can keep counting mail-in ballots 2 weeks after election day


National News
See other National News Articles

Title: Hackers damaged over 600,000 routers last year that belonged to a single ISP
Source: [None]
URL Source: https://www.techspot.com/news/10323 ... -600000-routers-belonging.html
Published: Jun 4, 2024
Author: Mike Rivero
Post Date: 2024-06-04 10:23:02 by Horse
Keywords: None
Views: 274
Comments: 2

Cybercriminals can do lasting damage to internet routers protected by weak credentials by exploiting the right remote access features. Black Lotus researchers discovered one such "destructive" event last October that bricked hundreds of thousands of routers.

Analysts at Black Lotus Labs dubbed the cyber-incident the "Pumpkin Eclipse," as it was felt across several Midwest states by the end of October last year. Between October 25 and 27, over 600,000 small office/home office (SOHO) routers were taken offline, unable to access the internet.

The unnamed criminals targeted two router models manufactured by ActionTec (T3200, T3260), but the method used to access those devices is still unknown. The hackers didn't use exploits or zero-day vulnerabilities, which suggests they used brute force to attack weak authentication credentials or may have entered through an exposed administrative interface.

Once in, the cyber-criminals used a well-known remote access trojan (RAT) named Chalubo to download and install malicious firmware on the compromised routers. The firmware rendered the SOHO devices "permanently inoperable," forcing the ISP to replace them to restore internet connectivity. Security researchers have known about the Chalubo RAT since 2018. The malware has advanced features such as encrypted communications, DDoS capabilities, and custom Lua script execution.

Post Comment   Private Reply   Ignore Thread  


TopPage UpFull ThreadPage DownBottom/Latest

#1. To: Horse (#0)

Curious how many of those "hackers" were CIA/Mossad/Govt.

Pigpen  posted on  2024-06-04   20:20:46 ET  Reply   Trace   Private Reply  


#2. To: Pigpen (#1)

Just the one.

ghostrider  posted on  2024-06-04   22:37:53 ET  Reply   Trace   Private Reply  


TopPage UpFull ThreadPage DownBottom/Latest


[Home]  [Headlines]  [Latest Articles]  [Latest Comments]  [Post]  [Sign-in]  [Mail]  [Setup]  [Help]