{"uuid": "2fe22b4c-5984-45f6-99bc-4e8ea78100a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-20118", "type": "exploited", "source": "https://t.me/cIub1337/75", "content": "PolarEdge: Unveiling an uncovered ORB network\n\n#PolarEdge #botnet active since late 2023. This botnet targets a variety of devices by exploiting multiple vulnerabilities, deploying advanced payloads like a #TLS #backdoor. The investigation identified over 2,000 compromised assets worldwide, with the botnet leveraging the Mbed TLS library and focusing on edge devices. Notably, the botnet exploits CVE-2023-20118, a vulnerability in #Cisco Small Business #Routers, to deploy webshells and backdoors, enabling persistent access and control over infected devices. \n\nhttps://blog.sekoia.io/polaredge-unveiling-an-uncovered-iot-botnet/\n\nTelegram   \u2709\ufe0f @club1337\nX (Twitter) \ud83d\udd4a @club31337", "creation_timestamp": "2025-03-18T12:07:32.000000Z"}