VPNFilter

Description

(Talos) For several months, Talos has been working with public- and private-sector threat intelligence partners and law enforcement in researching an advanced, likely state-sponsored or state-affiliated actor’s widespread use of a sophisticated modular malware system we call ‘VPNFilter.’ We have not completed our research, but recent events have convinced us that the correct way forward is to now share our findings so that affected parties can take the appropriate action to defend themselves.

Names

Name
VPNFilter

Type

Backdoor
Botnet
Worm

Information

https://blog.talosintelligence.com/2018/05/VPNFilter.html
https://blog.talosintelligence.com/2018/06/vpnfilter-update.html
https://blog.talosintelligence.com/2018/09/vpnfilter-part-3.html
https://securelist.com/vpnfilter-exif-to-c2-mechanism-analysed/85721/
https://blog.trendmicro.com/trendlabs-security-intelligence/vpnfilter-affected-devices-still-riddled-with-19-vulnerabilities
https://www.sophos.com/en-us/medialibrary/PDFs/technical-papers/sophos-VPN-Filter-analysis-v2.pdf
https://www.dropbox.com/s/9lkeenhveb3xbkq/Whitepaper%20VPNFilter%20IoT%20botnet%20seized%20by%20the%20FBI.pdf?dl=0

Mitre Attack

https://attack.mitre.org/software/S1010

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/elf.vpnfilter

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:vpnfilter

Other Information

Uuid

2b224eef-4ed5-4267-8c56-acd46592cb6d

Last Card Change

2024-12-27

Threat Intelligence Garden

Explorer

VPNFilter

VPNFilter

Description

Names

Category

Type

Information

Mitre Attack

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks