Security expert Ankit Anubhav discovered a Command and Control server for the Owari botnet protected with weak credentials. The researchers exploited week configuration to take over the MySQL server used to control the botnet. The author left port 3306 open allowing the authentication with root as username and password. An expert also discovered a history table containing information on the DDoS attacks carried out against various targets. Some of the IP addresses targeted by the Botnet were associated with rival IoT botnets. Botnet operators continuously change attack IPs to remain under the radar.”]
Source: https://securityaffairs.co/wordpress/73251/hacking/owari-botnet-hack.html

