Darktrace researchers have identified a novel Go-based Linux botnet named “PumaBot” targeting embedded Linux IoT devices – notably, the malware checks for the presence of the string “Pumatronix”, a manufacturer of surveillance and traffic camera systems.
Unlike typical botnets that scan the entire internet, PumaBot uses a remote command-and-control (C2) server to get a list of devices to attack. It gains access by brute-forcing credentials and then disguises itself as legitimate software to avoid detection. The malware establishes persistence, creates multiple backdoors and performs checks to avoid honeypots or other restricted environments, suggesting a sophisticated campaign to establish long-term access to these systems.
You can read this blog post here.
Like this:
Like Loading...
Related
This entry was posted on May 28, 2025 at 9:26 am and is filed under Commentary with tags Darktrace. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Darktrace uncovers novel botnet targeting IoT devices
Darktrace researchers have identified a novel Go-based Linux botnet named “PumaBot” targeting embedded Linux IoT devices – notably, the malware checks for the presence of the string “Pumatronix”, a manufacturer of surveillance and traffic camera systems.
Unlike typical botnets that scan the entire internet, PumaBot uses a remote command-and-control (C2) server to get a list of devices to attack. It gains access by brute-forcing credentials and then disguises itself as legitimate software to avoid detection. The malware establishes persistence, creates multiple backdoors and performs checks to avoid honeypots or other restricted environments, suggesting a sophisticated campaign to establish long-term access to these systems.
You can read this blog post here.
Share this:
Like this:
Related
This entry was posted on May 28, 2025 at 9:26 am and is filed under Commentary with tags Darktrace. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.