<ul><li>Kaspersky warns multiple DVR devices, such as TBK DVR-4104 and DVR-4216, are being targeted with malware that assimilates them into a botnet with DDoS and proxy capabilities.</li><li>A year-old vulnerability (CVE-2024-3721) in these devices is being exploited to expand the Mirai botnet, allowing attackers to take full control remotely.</li><li>The malware drops an ARM32 malware on the targeted devices, enabling DDoS attacks and proxying malicious traffic; victims are located globally, with a significant concentration in China, India, and Russia.</li><li>Despite the discovery of the vulnerability a year ago, there is uncertainty regarding patch availability, as it is reported that manufacturers like TBK Vision might not have provided a fix, affecting various third-party brands that use these devices as a basis for their models.</li></ul>

Watch out - your DVR box could be targeted by one of the nastiest botnets around

Discover more