32,000+ WiFi Routers Potentially Exposed to New Gafgyt Variant
New research by Unit 42 warns that a new version of the Gafgyt Internet of Things (IoT) botnet is targeting vulnerabilities in home routers by Huawei, Realtek and Zyxel. Scan results show that the total number of vulnerable devices is at least 32,000.
Gafgyt has been active since 2014, and has mostly been used by cybercriminals to carry out distributed denial-of-service (DDoS) attacks. The three vulnerable routers are Huawei HG532 (vulnerable to CVE-2017-17215), Realtek RTL81XX (vulnerable to CVE-2014-8361) and Zyxel P660HN-T1A (vulnerable to CVE-2017-18368). The aforementioned Huawei and Realtek routers are also being targeting by rival botnet JenX.