AVTECH and Huawei

The Murdoc Botnet, a new variant of the Mirai malware, has been actively exploiting vulnerabilities in AVTECH IP cameras and Huawei HG532 routers. Infecting over 1300 systems, with a notable presence in Malaysia, Thailand, Mexico, and Indonesia, the botnet uses older exploits like CVE-2024-7029 and CVE-2017-17215. The campaign is significant, with 100 servers found distributing malware and compromising IP communication. It employs command-line injections to load malicious ShellScripts on IoT devices, enlarging its network through C2 servers.

Source: https://securityaffairs.com/173294/cyber-crime/new-mirai-botnet-variant-murdoc-botnet-targets-avtech-ip-cameras-and-huawei-hg532-routers.html

"id": "net000012525",
"linkid": "netriseinc",
"type": "Vulnerability",
"date": "1/2025",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of geographical region"