Chinese security firm Qihoo 360s Netlab team observed multiple botnets exploiting zero-day vulnerabilities in DVRs for surveillance systems manufactured by Taiwan-based LILIN. The flaw could allow attackers to modify a DVR’s configuration file and inject backdoor commands. The vendor addressed the issues with the release of the firmware update (version 2.0b60_20200207) The new firmware released by the vendors validated the hostname passed as input to prevent command execution.”]
Source: https://securityaffairs.co/wordpress/100220/malware/netlab-dvrs-zero-day.html

