Botnet Targets GeoVision Vulnerability for Attacks
/ 1 min read
Botnet exploits GeoVision zero-day vulnerability for DDoS and cryptomining attacks. A critical vulnerability (CVE-2024-11120) has been identified in end-of-life GeoVision devices, allowing unauthenticated attackers to execute arbitrary commands. Discovered by Piotr Kijewski of The Shadowserver Foundation, this flaw affects around 17,000 devices, primarily in the U.S., and has already been exploited by a Mirai variant botnet. Users are advised to reset devices, change passwords, and ideally replace unsupported models to mitigate risks.