Techly NewsGet the app

Get the latest tech news

Hackers infect ISPs with malware that steals customers' credentials


Zero-day that was exploited since June to infect ISPs finally gets fixed.

Malicious hackers likely working on behalf of the Chinese government have been exploiting a high-severity zero-day vulnerability that allowed them to infect at least four US-based ISPs with malware that steals credentials used by downstream customers, researchers said Tuesday. “Given the severity of the vulnerability, the sophistication of the threat actors, the critical role of Versa Director servers in the network, and the potential consequences of a successful compromise, Black Lotus Labs considers this exploitation campaign to be highly significant,” Tuesday’s report said. The advisory said: “Impacted customers failed to implement system hardening and firewall guidelines mentioned above, leaving a management port exposed on the Internet that provided the threat actors with initial access.”

Get the Android app

Or read this on r/technology

Read more on:

Photo of Hackers

Hackers

Photo of malware

malware

Photo of Day

Day

Related news:

News photo

Chinese Volt Typhoon hackers exploited Versa zero-day to breach ISPs, MSPs

News photo

iPhone 16 reveal comes a day early: AI features and potentially a new Apple Watch also expected at the next big showcase

News photo

The Google Fit APIs will no longer be available after June 30, 2025

PowerWash Simulator heading to Shrek's fairytale world this autumn »