News Post

Mystery malware destroys 600,000 routers from a single ISP during 72-hour span

ArstechnicaArstechnica · 5m
Mystery malware destroys 600,000 routers from a single ISP during 72-hour span

Last October, more than 600,000 routers belonging to users of ISP Windstream were rendered unusable by malware, according to research from Lumen Technologies' Black Lotus Labs. The malware exploited a vulnerability, causing routers to display a static red light and become unresponsive to reboots. Black Lotus Labs reported that the attack was a deliberate act, as the malware opted for a commodity malware known as Chalubo rather than a custom-developed toolset, and executed custom Lua scripts on the infected devices to overwrite their firmware. The incident impacted Windstream customers in rural and underserved communities, potentially disrupting emergency services, farming operations, and healthcare providers.

Comments

Download the medial app to read full posts, comements and news.