A new botnet malware – ZHtrap, is hunting down and transforming infected routers, UPnP network devices, and DVRs into honeypots that help it discover other targets to infect.
The malware, named ZHtrap by security researchers at 360 Netlab, is loosely based on Mirai’s source code, and it comes with support for MIPS, ARM, x86, and other CPU architectures.
Once it takes control of a device, it blocks other malware from re-infecting its bots with the help of a whitelist that only permits already running system processes, shutting off all attempts to run new commands.
To Read More: BleepingComputer
