Tag: d-link

2 Attack Reports | 0 Vulnerabilities

Attack reports

Botnets Continue to Target Aging D-Link Vulnerabilities

Two botnets, FICORA and CAPSAICIN, have been exploiting long-standing vulnerabilities in D-Link routers to spread globally. FICORA, a Mirai variant, uses a shell script to download and execute malware on various Linux architectures, incorporating DDoS attack functions. CAPSAICIN, likely based on th…
ddos
botnet
mirai
d-link
ficora
capsaicin
2024-12-31
hnap
Published: December 31, 2024
Linked vulnerabilities : CVE-2024-33112, CVE-2015-2051, CVE-2022-37056, CVE-2019-10891
Downloadable IOCs: 51

Warning of a surge in activity associated with FICORA and Kaiten botnets

FortiGuard Labs researchers observed increased activity from two botnets in late 2024: the Mirai variant 'FICORA' and the Kaiten variant 'CAPSAICIN'. Both target vulnerabilities in D-Link devices, particularly through the HNAP interface, allowing remote command execution. The FICORA botnet download…
linux
botnet
CVE-2015-2051
CVE-2024-33112
mirai
2024-12-27
kaiten
d-link
ficora
capsaicin
CVE-2019-10891
CVE-2022-37056
Published: December 27, 2024
Linked vulnerabilities : CVE-2024-33112, CVE-2015-2051, CVE-2022-37056, CVE-2019-10891
Downloadable IOCs: 2
Click here to see more Attack Reports