Matrix Unleashes A New Widespread DDoS Campaign
Essential information
- Published
- 27/11/2024 18:19
- Modified
- 27/11/2024 18:32
- Tags
- 2024-11-27 CVE-2014-8361 CVE-2017-17106 CVE-2017-17215 CVE-2017-18368 CVE-2018-10561 CVE-2018-10562 CVE-2018-9995 CVE-2022-30075 CVE-2022-30525 CVE-2024-27348 botnet brute-force cryptocurrency ddos discord discordgo iot mirai pybot script kiddie telegram vulnerability exploitation
- Related entities
- 11 vulnerabilities (cve), 12 observables, 1 intrusion sets (apt), 17 techniques (mitre), 3 malware, 4 others
Description
Related entities
Vulnerabilities, IOCs, intrusion sets, MITRE techniques and other entities referenced in this report.
Vulnerabilities (CVE) (11)
In TP-Link Router AX50 firmware 210730 and older, import of a malicious backup file via web interface can lead to remote code …
- Attack vector
- NETWORK
- Published
- 09/06/2022
- Modified
- 21/12/2025
- Published
- 20/12/2025
- Modified
- 21/12/2025
Credentials for Zivif PR115-204-P-RS V2.3.4.2103 Webcams can be obtained by an unauthenticated remote attacker using a standard web /cgi-bin/hi3510/param.cgi?cmd=getuser HTTP request. This …
- Published
- 19/12/2017
- Modified
- 13/05/2026
Dasan GPON Routers contain an authentication bypass vulnerability. When combined with CVE-2018-10561, exploitation can allow an attacker to perform remote code execution.
- Published
- 31/03/2022
- Modified
- 20/12/2025
RCE-Remote Command Execution vulnerability in Apache HugeGraph-Server.This issue affects Apache HugeGraph-Server: from 1.0.0 before 1.3.0 in Java8 & Java11 Users are recommended …
- Attack vector
- Network
- Published
- 18/09/2024
- Modified
- 21/12/2025
Arcadyan Buffalo firmware contains a path traversal vulnerability that could allow unauthenticated, remote attackers to bypass authentication and access sensitive information. This …
- Published
- 03/11/2021
- Modified
- 21/12/2025
Zyxel P660HN-T1A routers contain a command injection vulnerability in the Remote System Log forwarding function, which is accessible by an unauthenticated user …
- Published
- 07/08/2023
- Modified
- 20/12/2025
Dasan GPON Routers contain an authentication bypass vulnerability. When combined with CVE-2018-10562, exploitation can allow an attacker to perform remote code execution.
- Published
- 31/03/2022
- Modified
- 20/12/2025
Realtek SDK contains an improper input validation vulnerability in the miniigd SOAP service that allows remote attackers to execute malicious code via …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 01/05/2015
- Modified
- 22/04/2026
A command injection vulnerability in the CGI program of some Zyxel firewall versions could allow an attacker to modify specific files and …
- Published
- 16/05/2022
- Modified
- 20/12/2025
- Published
- 20/12/2025
- Modified
- 20/12/2025
Observables (12)
-
78.138.130.114 -
5.42.78.100 -
217.18.63.132 -
5.181.159.78 -
85.192.37.173 -
sponsored-ate.gl.at.ply.gg -
fa1b9e78b59cdb26d98da8b00fe701697a55ae9ea3bd11b00695cfbba2b67a7a -
aee08f24f2e0be5af8b9a7947e845e8364be2f8b5ff874fbc3e7a4c81ecdad83 -
8dfe94a1b02d1330886ad4458b32db3da4b872f9c2116657840de499fee5438a -
424058facc8f16fd578190a612bc3f9178f5e393d345c2330c39436abb4d1142 -
2e7682abe30d93afb3bd9dee0011c450c1d72d727151344b8b7360441571e007 -
0ee827d23752c2afc1b07e5312986703f63e05b8c4f1902f5db07bb494e4d057
Intrusion sets (APT) (1)
-
AlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
Techniques (MITRE) (17)
-
T1563.001 MITRE
-
Python MITRE
-
Network Share Discovery MITRE
-
Brute Force MITRE
-
Disable or Modify Tools MITRE
-
Compromise Host Software Binary MITRE
-
Data from Local System MITRE
-
Encrypted Channel MITRE
-
Resource Hijacking MITRE
-
Create or Modify System Process MITRE
-
Web Service MITRE
-
Exploitation of Remote Services MITRE
Malware (3)
Others (4)
-
China
-
Japan
-
Technology
-
Telecommunications