Technology

Security company reveals hackers manipulating zombie virus Mirai attacks servers deploying old version of Wazuh open source security platform

Team Passionategeekz
Team Passionategeekz
2 Min Read
Security company reveals hackers manipulating zombie virus Mirai attacks servers deploying old version of Wazuh open source security platform

Also See

Poco F7 5G Set to Launch in Indonesia on June 25, India Launch Likely on the Same Day
Poco F7 5G Set to Launch in Indonesia on June 25, India Launch Likely on the Same Day
Vivo X200 FE Global Launch Set for June 30, Pre-Orders Now Open with Exclusive Gifts
Vivo X200 FE Global Launch Set for June 30, Pre-Orders Now Open with Exclusive Gifts
Exclusive: Lava Storm 2 5G is in the works with Dimensity Chipset and AMOLED display
Exclusive: Lava Storm 2 5G is in the works with Dimensity Chipset and AMOLED display
Madhav Sheth NxtQuantum AI+ Nova 5G series smartphones launching in july
Madhav Sheth NxtQuantum AI+ Nova 5G series smartphones launching in july
Tecno POVA 7 series Launch Set for June 25
Tecno POVA 7 series Launch Set for June 25


Free Article Submission
SUBMIT YOUR ARTICLE HERE FOR FREE

Passionategeekz On June 15, security company Akamai published a statement revealing that a hacker manipulated the zombie virus Mirai attacked servers that deployed the old version of Wazuh’s open source security platform.Attempt to exploit the fixed CVE-2025-24016 vulnerability to attack the corresponding server

It is reported that this CVE-2025-24016 vulnerability was exposed in February this year and mainly exists in DistributedAPI components, which is an unsafe deserialization processing problem. Hackers can inject specially crafted JSON into the Wazuh server through the API interface, thereby remotely executing arbitrary Python code. The corresponding vulnerability affects Wazuh versions 4.4.0 to 4.9.0,The CVSS risk score reaches 9.9 (out of 10 points), and the official has completed the fix in version 4.9.1

The reason why this attack has attracted much attention is that the Wazuh platform itself is a security platform for enterprises, which is mainly used to assist enterprises in recording and analysis of network security incidents. It collects a large number of logs and sensitive information related to network security incidents. Once controlled by hackers, hackers can not only use server resources to launch DDoS attacks, mining or spread malicious Trojans, but also may further read and tamper with data within the platform and grasp the internal network environment of the victimized enterprise, thereby triggering more targeted and more concealed subsequent attacks.

Security companies said that this incident reminds users that even the security tool itself must be maintained regularly and patched vulnerabilities in a timely manner, otherwise it may lead to hackers taking advantage of the situation.

Advertising statement: The external redirect links (including, not limited to, hyperlinks, QR codes, passwords, etc.) contained in the article are used to convey more information and save selection time. The results are for reference only. All articles from Passionategeekz include this statement.



Source link

Discover more from PassionateGeekz

Subscribe to get the latest posts sent to your email.

TAGGED:
Share This Article
Leave a Comment

Leave a Reply

Stay Connected

You Might Also Like

Discover more from PassionateGeekz

Subscribe now to keep reading and get access to the full archive.

Continue reading