Cybercriminals are exploiting a ThinkPHP vulnerability, recently patched in December 2018. The attackers are using exploited systems to then propagate two new botnets – Yowai (variant of Mirai) and Hakai (variant of Gafgyt).
Attackers are using a variant of the infamous Mirai IoT botnet dubbed “Miori” to exploit a Remote Code Execution (RCE) vulnerability in ThinkPHP, a free open-source PHP framework.
Security researchers warn that an IoT botnet has been scanning the internet and exploiting nearly 100,000 routers exposed with a five year old UPnP vulnerability.
The FBI issued a warning on Thursday of the risks of Internet of Things (IoT) devices.
Attackers are exploiting IoT devices with open ADB port 5555 to spread malware.