A new threat actor is distributing the RondoDox malware, a variant of Mirai, targeting IoT devices. The actor uses residential IP addresses for distribution and employs over a dozen exploits to target various IoT vulnerabilities. The malware's first stage is a shell script that attempts to disable …
Published: November 26, 2025
Linked vulnerabilities :
CVE-2024-4577 (CVSS 9.8),
CVE-2024-10914 (CVSS 8.1),
CVE-2022-42475,
CVE-2017-9841,
CVE-2023-23333,
CVE-2019-9082,
CVE-2023-1389,
CVE-2025-31324 (CVSS 10.0),
CVE-2025-4008 (CVSS 9.4),
CVE-2024-3721,
CVE-2025-34043 (CVSS 10.0),
CVE-2025-9528 (CVSS 5.1),
CVE-2013-1599,
CVE-2022-36553,
CVE-2020-10987,
CVE-2023-41011,
CVE-2022-40619,
CVE-2022-24847,
CVE-2020-8958,
CVE-2014-3206,
CVE-2023-1381,
CVE-2022-22947,
CVE-2020-9054
Downloadable IOCs: 26