Chinese security firm Qihoo 360’s Netlab team says LILIN DVR zero-day vulnerabilities have been exploited by botnet operators to infect and co-opt vulnerable devices into a family of denial-of-service bots. The vulnerability makes use of hard-coded login credentials (root/icatch99 and report/8Jg0SR8K50), potentially granting an attacker the ability to modify a DVR’s configuration file and inject backdoor commands. The newly patched version addresses the flaws by validating the hostname so as to prevent command execution.
Source: https://thehackernews.com/2020/03/ddos-botnets-lilin-dvr.html