A new botnet, Ballista, is exploiting a high-severity security flaw in TP-Link routers. The malware has spread to over 6,000 devices, predominantly in Brazil, Poland, the UK, Bulgaria, and Turkey, and targets manufacturing, healthcare, services, and technology organizations. The botnet enables remote command execution and spreads other malware, emphasizing the ongoing issue of unpatched security flaws. The IP address and language used suggest an unknown Italian origin.
Forescout widens research on Silver Fox hackers, reveals malware clusters targeting healthcare through DICOM, HL7 exploits
Research by cybersecurity firm, Forescout Technologies, uncovered three malware clusters targeting healthcare systems, including a Trojan infecting Philips DICOM viewers. The attack exploits default credentials,
