Any data sent across internet equipment infiltrated by this malware is potentially exposed.
Cuttlefish lies in wait, passively sniffing packets, acting only when triggered by a predefined ruleset.
The latest campaign ran from October 2023 through April 2024.
Source: Black Lotus Labs
These two telecom firms accounted for roughly 93% percent of infections 600 unique IP addresses.
Currently, the researchers are unable to determine the routers initial infection.
Further, consumers with SOHO routers should regularly reboot them and install security updates and patches.
Source: Black Lotus Labs
Additionally, organizations that manage SOHO routers should ensure their devices do not depend upon common default passwords.
source: www.techworm.net
