Also: Massive data breach exposes 184 million passwords for Google, Microsoft, Facebook, and more To gain initial access, the attackers used brute force login techniques and two different methods to bypass the built in authentication. They've also been able to exploit certain vulnerabilities not yet assigned official CVE numbers . Once they'd accessed the router, they were able to run arbitrary system commands by exploiting a known security flaw identified as CVE 2023 39780 . Though...
