AT&T's networking devices are currently targeted by a new malware called EwDoor. This new malicious tool is confirmed to be exploiting the device model's old flaw, which was discovered way back in 2017.
The specific vulnerability that is exploited by the new malware is the CVE-2017-6079. This flaw, a command-injection vulnerability, was first discovered by Spencer Davis, a penetration tester.
He used this flaw to hack a customer's network in 2017 successfully. Now, the new EwDoor malware is said to be taking advantage of this old security issue so that hackers behind it can easily conduct DoS (denial-of-service) attacks.
"So far, the EwDoor in our view has undergone 3 versions of updates, and its main functions can be summarized into 2 main categories of DDoS attacks and Backdoor," said involved security experts via Qihoo 360's official website.
AT&T Suffer From New EwDoor Malware
According to ArsTechnica's latest report, around 5,700 AT&T customers in the United States have fallen victims to the new EwDoor malware.
If you are one of the consumers of the telco giant, the device model that is currently attacked is the EdgeMarc Enterprise Session Border Controller.
This networking device is a tool that can secure and manage phone calls. SMBs are currently relying on this gadget to contact their clients and customers.
It can also secure real-time communications, such as video conferences. If you want to see more details about the new malware, you can click this link.
How Serious is EwDoor?
Qihoo 360 experts explained that the new EwDoor malware specifically attacks Edgewater devices. This means that hackers behind the new malicious tool could also use the malware to exploit other old vulnerabilities.
As of the moment, security researchers said that EwDoor could conduct the following hacking activities:
- File management
- DDoS attack
- Port scanning
- Reverse shell
- Execution of arbitrary commands
For more news updates about malware and other security threats, always keep your tabs open here at TechTimes.
This article is owned by TechTimes
Written by: Griffin Davis