Vulnerability cyber

DigiEver

Dec 27, 2024 2 min read
DigiEver

DigiEver, a manufacturer of DVRs, became the target of a new Mirai botnet variant which exploits a remote code execution vulnerability in their DS-2105 Pro DVRs. Akamai researchers found that this vulnerability allowed botnet operators to inject malicious code and maintain persistence on infected IoT devices. As a result, the compromised DVRs are used for further spreading the malware and brute-forcing operations. The targeted devices are about a decade old, often without the support of their manufacturers, leaving them without security updates. The incident underscores the risks associated with outdated firmware and hardware in IoT devices, which can be co-opted into botnets for large-scale cyber attacks.

Source: https://securityaffairs.com/172345/malware/mirai-botnet-targets-digiever-ds-2105-pro-dvrs.html

TPRM report: https://scoringcyber.rankiteo.com/company/digiever-corp-

"id": "dig000122724",
"linkid": "digiever-corp-",
"type": "Vulnerability",
"date": "12/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Electronics',
                        'name': 'DigiEver',
                        'type': 'Manufacturer'}],
 'attack_vector': 'Remote Code Execution',
 'description': 'DigiEver, a manufacturer of DVRs, became the target of a new '
                'Mirai botnet variant which exploits a remote code execution '
                'vulnerability in their DS-2105 Pro DVRs. Akamai researchers '
                'found that this vulnerability allowed botnet operators to '
                'inject malicious code and maintain persistence on infected '
                'IoT devices. As a result, the compromised DVRs are used for '
                'further spreading the malware and brute-forcing operations. '
                'The targeted devices are about a decade old, often without '
                'the support of their manufacturers, leaving them without '
                'security updates. The incident underscores the risks '
                'associated with outdated firmware and hardware in IoT '
                'devices, which can be co-opted into botnets for large-scale '
                'cyber attacks.',
 'impact': {'systems_affected': 'DS-2105 Pro DVRs'},
 'initial_access_broker': {'entry_point': 'Remote Code Execution '
                                          'Vulnerability'},
 'lessons_learned': 'Risks associated with outdated firmware and hardware in '
                    'IoT devices, which can be co-opted into botnets for '
                    'large-scale cyber attacks.',
 'motivation': 'Malware Spreading, Brute-forcing Operations',
 'post_incident_analysis': {'root_causes': 'Outdated firmware and hardware in '
                                           'IoT devices'},
 'references': [{'source': 'Akamai Researchers'}],
 'response': {'third_party_assistance': 'Akamai'},
 'threat_actor': 'Mirai Botnet Operators',
 'title': 'Mirai Botnet Variant Targets DigiEver DVRs',
 'type': 'Botnet',
 'vulnerability_exploited': 'Remote Code Execution Vulnerability in DS-2105 '
                            'Pro DVRs'}
Published by
Jeremy C
Jeremy C
You might also like
Vulnerability cyber

LangChain

public 2 min read
Cybersecurity researchers at Noma Security disclosed a critical vulnerability dubbed AgentSmith in LangChain‘s LangSmith platform, specifically affecting its public…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.