Moobot Botnet Chews Up Hikvision Surveillance Systems

2021-12-08 20:13

Although a patch was released in September, any still-vulnerable Hikvision IP Network Video Recorder products are being actively targeted by the Mirai-based botnet known as Moobot.

FortiGuard Labs has released a report detailing how the Moobot botnet is leveraging a known remote code execution vulnerability in Hikvision products to spread a Moobot, which carries out distributed denial of service attacks.

The attack surface could be significant: China-based Hikvision touted itself as the "World's leading video-surveillance products supplier" on the company site.

Sartori is another Mirai-based botnet and one of dozens that have been spun off the original source code.

Fortinet listed Mirai as the top botnet threat in its analysis of the first half of 2021.

Any organizations running unpatched Hikvision systems are urged to get the firmware update provided by the company.

News URL

https://threatpost.com/moobot-botnet-hikvision-surveillance-systems/176879/

#botnet #surveillance

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Hikvision		422	0	11	9	10	30