Security News > 2021 > November > Millions of Routers, IoT Devices at Risk from BotenaGo Malware

Newly surfaced malware that is difficult to detect and written in Google's open-source programming language has the potential to exploit millions of routers and IoT devices, researchers have found.

This feature may be the reason why it's caught on with malware developers in the last few years, since it also makes it easier for attackers to spread malware on multiple operating systems, Caspi wrote.

Research from Intezer, which offers a platform for analyzing malware, suggests that there has been a 2,000 percent increase in malware code written in Go being found in the wild, he wrote.

Researchers said at this time they don't know which threat actor or actors developed BotenaGo, nor the full scale of devices that are vulnerable to the malware.

In its last step before fully engaging, BotenaGo calls the function 'scannerInitExploits', "Which initiates the malware attack surface by mapping all offensive functions with its relevant string that represent the targeted system," Caspi wrote.

"Bad actors, such as those at work here, love to exploit these devices to gain access to the internal networks behind them, or just to use it as a platform from which to launch other attacks," observed Erich Kron, security awareness advocate at security firm KnowBe4, in an email to Threatpost.

News URL

https://threatpost.com/routers-iot-open-source-malware/176270/