A new variant of Echobot botnet has been spotted to include over 50 exploits leading to remote code execution (RCE) vulnerabilities in various Internet-of-Things devices.
Echobot was discovered in May and analyzed by security researchers at Palo Alto Networks, who found that it incorporated 18 exploits at the time.
A week later, Larry Cashdollar from Akamai published his analysis, where he
revealed that the number of exploits in Echobot increased to 26, most of them being RCEs in several networked devices.
The latest Echobot variant was found by security researcher Carlos Brendel Alcañiz, and uses 59 different RCE exploits to propagate, according to a tweet he published today.
Just a couple hours ago I received an exploit targeting Asus devices. Nothing interesting so far. The "richard" file is a shitty dropper, but the malware is just a bot that propagates itself using 61 different RCE exploits. I guess Richard is trying hard to get popular ^^
pic.twitter.com/xA1Tn2o3z1
— Carlos Brendel (@carbreal)
August 6, 2019
