A Chinese state-sponsored APT group implanted malicious firmware into TP-Link routers as part of attack campaigns aimed at European foreign affairs entities, say Check Point researchers. Custom malicious firmware for TP-Link routers The malicious firmware was exclusively created for TP-Link routers. Among its many harmful components, there’s also a customized backdoor dubbed “Horse Shell.” Horse Shell has three main functionalities: Remote shell – Gives threat actors full access to the infected device File transfer – … More
The post TP-Link routers implanted with malicious firmware in state-sponsored attacks appeared first on Help Net Security.
