Threat actors are actively exploiting a command injection vulnerability (CVE-2024-3721) in TBK DVR-4104 and DVR-4216 devices to deploy a Mirai botnet variant called “Nexcorium.” The malware also targets end-of-life TP-Link Wi-Fi routers and Huawei HG532 devices. Once infected, devices are enrolled into a botnet capable of launching large-scale DDoS attacks over UDP, TCP, and SMTP protocols. Researchers warn that IoT devices remain prime targets due to poor patching and weak security settings.
Read the full story here.

