U.S. Feds Shut Down China-Linked "KV-Botnet" Targeting SOHO Routers
01-Feb-24
The U.S. government has taken action to neutralize the KV-Botnet, linked to China’s Volt Typhoon, targeting end-of-life Cisco and NetGear routers in small offices and homes. The botnet, exploiting routers for covert data transfer, uses the Log4Shell vulnerability and is associated with a Chinese cyber espionage group. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released guidance for secure development of small office and home office (SOHO) routers, emphasizing the need to eliminate exploitable defects and enhance security controls.
