New Gafgyt Variant Targets Linux Systems With Modular Spread Tactics

Jun 5, 2026 12:42 PM

Tags: botnet, cve, cyber, exploit, firmware, iot, linux, malware, tactics, vulnerability

A new Gafgyt-family botnet, tracked as C0XMO, marks a notable technical shift in IoT malware design: the separation of scanning and propagation into distinct components and multi-architecture payloads that maximize reach across heterogeneous Linux devices. The operator delivered C0XMO by exploiting CVE-2021-27137 a stack buffer overflow in the UPnP SSDP parser of vulnerable DD-WRT firmware […] The post New Gafgyt Variant Targets Linux Systems With Modular Spread Tactics appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/gafgyt-variant-targets-linux/

also interesting:

The 2024 cyberwar playbook: Tricks used by nation-state actors
When Your Own Eyes Turn Against You: How Compromised Security Cameras and IoT/OT Devices Become Tools for Your Attackers
Cybersecurity Snapshot: CISA Analyzes Malware Used in SharePoint Attacks, as U.K. Boosts Cyber Assessment Framework
Cybersecurity Snapshot: Refresh Your Akira Defenses Now, CISA Says, as OWASP Revamps Its App Sec Top 10 Risks

Collecting Cyber-News from over 60 sources

X
LinkedIn
RSS Feed
Mail

Here I provide a database that gathers and curates the latest news on Cybersecurity. Being well-informed is the key to successfully respond on security threats.

Imprint | Privacy Policy | Contact