possible TURLA vulnarability (atp/botnet) R6300 dd-wrt firmware

1 post / 0 new
StarBlazer692003
StarBlazer692003's picture
possible TURLA vulnarability (atp/botnet) R6300 dd-wrt firmware

dd-wrt (latest, and older, for Netgear R6300), appears to have a TURLA vulnerability:

article below:
(this is semi-new and not well-known, it is an ATP/botnet, and sends remote commands...it is activated via. a TCP & UDP combination described in the below link (article is short)
http://securelist.com/blog/research/67962/the-penquin-turla-2/

(several, but not all antivirus vendors have articles listed, and this thing is nasty!)

you may wish to block 80.248.65.183, this also has a win equivelant. (major version affects linux and linux-based installs!)

Thank you
-Jess Sosnoski

(i was not sure where to send this, if possible, please get back to me :) )
btw...love dd-wrt!