TP-Link Archer WiFi router flaw exploited by Mirai malware

The Mirai malware botnet is actively exploiting a TP-Link Archer A21 (AX1800) WiFi router vulnerability tracked as CVE-2023-1389 to incorporate devices into DDoS (distributed denial of service) swarms.

TP-Link W9960 – Change the PPPoE Authentication - URL Networks

Think twice before buying TP-Link Archer AX21 Wi-Fi router. It can be hacked easily

GreyNoise and TrinityCyber have observed active exploitation attempts using weaknesses found in CVE-2023-1389 against TP-Link Archer gigabit routers. The blog post provides information about a new GreyNoise tag for this activity as

Shwetank M. on LinkedIn: TP-Link Archer WiFi router flaw exploited by Mirai malware

Mirai DDoS malware variant expands targets with 13 router exploits

TP-Link Archer WiFi router flaw exploited by Mirai malware

IoT Under Siege: The Anatomy of the Latest Mirai Campaign Leveraging Multiple IoT Exploits

Virgil Truica on LinkedIn: TP-Link Archer WiFi router flaw exploited by Mirai malware

Mirai Botnet operators are using TP-Link routers for DDoS attacks, says US government

New Condi DDoS botnet targets TP-Link Wi-Fi routers

New Condi DDoS botnet targets TP-Link Wi-Fi routers

Mirai-based botnet IZ1H9 added 13 payloads to target routers