"Microsoft: Chinese Hackers Use Qaud7 Botnet to Steal Credentials"

Microsoft warns that Chinese threat actors are using the "Quad7" botnet, built with hacked Small Office/Home Office (SOHO) routers, to steal credentials in password-spray attacks. A security researcher named "Gi7w0rm" first discovered the Quad7 botnet. According to later reports by researchers at Sekoia and Team Cymru, the threat actors behind the botnet are targeting devices from TP-Link, ASUS, and more. When the devices are compromised, the threat actors launch custom malware that enables remote access to the devices over Telnet. This article continues to discuss key findings regarding the Quad7 botnet.

BleepingComputer reports "Microsoft: Chinese Hackers Use Qaud7 Botnet to Steal Credentials"