Revived Mirai Variant Now Targets a Zero-Day in Ruijie Routers
Mirai_ptea_Rimasuta, an old and unpopular variant of Mirai, has resurfaced to exploit a zero-day vulnerability in RUIJIE router devices. Hacker have redesigned encryption algorithm and C2 communication protocol; it uses the TEA algorithm and encrypts other sensitive resource info. Users are suggested to check and update the system firmware regularly and use a strong password for the management interface.
