Threat Post

ZuoRAT Can Take Over Widely Used SOHO Routers

Devices from Cisco, Netgear and others at risk from the multi-stage malware, which has been active since April 2020 and shows the work of a sophisticated threat actor. A novel multistage remote access ...
CRN

FBI Says It ‘Neutralized’ Russian Hack Of Hundreds Of SOHO Routers

The operation disrupted an attack campaign in January that had compromised small office/home office (SOHO) routers from Ubiquiti, the agency says. The FBI said Thursday that it disrupted a widespread ...
Bleeping Computer

New ZuoRAT malware targets SOHO routers in North America, Europe

A newly discovered multistage remote access trojan (RAT) dubbed ZuoRAT has been used to target remote workers via small office/home office (SOHO) routers across North America and Europe undetected ...
techtimes

SOHO Router-Targeting Botnet AVrecon Infiltrates More Than 70,000 Devices in 20 Countries: How Dangerous Is This Malware Strain?

A stealthy Linux malware called AVrecon has been infecting over 70,000 small office/home office (SOHO) routers, creating a botnet primarily aimed at stealing bandwidth and operating as a hidden ...
Bleeping Computer

AVrecon malware infects 70,000 Linux routers to build botnet

Since at least May 2021, stealthy Linux malware called AVrecon was used to infect over 70,000 Linux-based small office/home office (SOHO) routers and add them to a botnet designed to steal bandwidth ...
ZDNet

This sophisticated malware is targeting routers to break into networks

A newly discovered remote access trojan (RAT) called ZuoRAT has targeted remote workers by exploiting flaws in often unpatched small office/home office (SOHO) routers. Researchers at Lumen's Black ...