"'TheMoon' Malware Shows Its Dark Side, Grows to 40,000 Bots From 88 Countries"

A campaign involving an updated version of "TheMoon" malware has targeted End-of-Life (EoL) small business routers and Internet of Things (IoT) devices through a cybercriminal proxy service called "Faceless." Lumen Technologies' Black Lotus Labs team discovered that TheMoon malware, which first appeared in 2014, was working quietly while growing to over 40,000 bots from 88 countries by January and February this year. Black Lotus Labs first described the malware in 2019 and noted that it is in a new phase. In their latest post, the researchers found at least one campaign by the Faceless criminal proxy service that started in the first week of March and targeted more than 6,000 ASUS routers in less than 72 hours. This article continues to discuss findings regarding the updated TheMoon malware.

SC Magazine reports "'TheMoon' Malware Shows Its Dark Side, Grows to 40,000 Bots From 88 Countries"

Submitted by grigby1