Threat actors are actively exploiting CVE-2024-3721, a critical vulnerability in TBK DVR devices, to create a botnet capable of executing DDoS attacks. Immediate mitigation steps are recommended as no patch is currently available. #CVE-2024-3721 #TBK_DVR #IoTThreats
Keypoints
- Multiple threat actor groups are exploiting the CVE-2024-3721 vulnerability in TBK DVR devices.
- Over 60,000 detection events indicate widespread and coordinated attack efforts.
- The vulnerability allows unauthenticated remote code execution through crafted HTTP requests.
- Exploited devices are being recruited into botnets associated with Condi, Fodcha, Mirai, and Unstable families.
- Organizations are advised to block IoCs, restrict remote access, and monitor for unusual traffic until patches are available.
Read More: https://fortiguard.fortinet.com/outbreak-alert/tbk-dvrs-botnet-attack