A new version of the Mirai botnet is exploiting a critical vulnerability in network-attached storage (NAS) devices in an attempt to remotely infect and control vulnerable machines. The new variant of the malware employs brute-force attacks using different combinations of default credentials to take control of the devices and add them to a network of infected bots that can be used to carry out DDoS attacks. Zyxel NAS products running firmware versions up to 5.21 are vulnerable to the compromise, researchers say.
Source: https://thehackernews.com/2020/03/zyxel-mukashi-mirai-iot-botnet.html