Gayfemboy: A Botnet Deliver Through a Four-Faith Industrial Router 0-day Exploit.

SUMMARY :

The Gayfemboy botnet, discovered in February 2024, has evolved from a simple Mirai derivative into a sophisticated large-scale botnet. It exploits a 0-day vulnerability in Four-Faith industrial routers and unknown vulnerabilities in other devices to spread. With over 15,000 daily active nodes across 40 grouping categories, it targets multiple countries and industries. The botnet's capabilities include self-updating, scanning, and various DDoS attack methods. It has shown aggressive behavior, retaliating against attempts to analyze it. The botnet's evolution demonstrates the persistent threat of DDoS attacks and the need for comprehensive defense strategies.

OPENCTI LABELS :

botnet,ddos,cve-2024-12856,four-faith,0-day,gayfemboy,industrial-router


Open in NetmanageIT OpenCTI Public Instance with below link!


Use public read only username and password on login page.

NOTE : Use Public READ only user credentials on login page banner.


Gayfemboy: A Botnet Deliver Through a Four-Faith Industrial Router 0-day Exploit.