The Hoaxcalls Internet of Things (IoT) botnet has expanded the list of targeted devices and has added new distributed denial of service (DDoS) capabilities. The botnet borrows the code from Tsunami and Gafgyt botnets and it is targeting vulnerabilities affecting Grandstream UCM6200 series devices and Draytek Vigor routers. The new variant implements 16 new DDoS capabilities and is targeting an unpatched issue in the ZyXEL Cloud CNM SecuManager.”]
Source: https://securityaffairs.co/wordpress/102202/malware/hoaxcalls-botnet-new-variant.html