Summary: A threat actor has advertised a sophisticated remote code execution exploit targeting TP-Link routers running LuCI-based firmware. The tool allegedly allows for complete control over the devices, exfiltrating sensitive data, and propagating across networks using default credentials. The exploit is offered for sale, with prices starting at ,000, highlighting its advanced capabilities compared to similar tools in underground markets.
Affected: TP-Link routers
Keypoints :
- Threat actor claims the exploit can infiltrate and control TP-Link routers.
- Exfiltrates sensitive data and disables security defenses on compromised devices.
- Available for purchase, with a base price of ,000 and a full package at ,000.
- Includes an AES-256 encrypted backdoor for long-term access.
- Compared to other high-end RCE kits that can cost up to ,000.
Source: https://dailydarkweb.net/alleged-tp-link-exploit-for-sale-on-dark-web/
Views: 15