FreakOut – Leveraging Newest Vulnerabilities for creating a Botnet

Recently, Check Point Research encountered several attacks that exploited multiple vulnerabilities, including some that were only recently published, to inject OS commands. The goal behind the attacks was to create an IRC botnet, which can later be used for several purposes, such as DDoS attacks or crypto-mining.

The attacks aim at devices that run one of the following:

TerraMaster TOS(TerraMaster Operating System) – the operating system used for managing TerraMaster NAS (Network Attached Storage) servers
Zend Framework – a collection of packages used in building web application and services using PHP, with more than 570 million installations
Liferay Portal – a free, open-source enterprise portal. It is a web application platform written in Java that offers features relevant for the development of portals and websites

Read more about the threat research and mitigation actions:

https://research.checkpoint.com/2021/freakout-leveraging-newest-vulnerabilities-for-creating-a-botne...

This SmartView report will show if you have been attacked with the relevant vulnerabilities and indicators related to this attack.