Too Long; Didn't Read
Check Point Research encountered several attacks that exploited multiple vulnerabilities, including some that were only recently published, to inject OS commands. The goal behind the attacks was to create an IRC botnet, which can later be used for several purposes, such as DDoS attacks or crypto-mining. The attacks aim at devices that run one of the following: TerraMaster TOS, Zend Framework and Liferay Portal. The first attack trying to download the file was observed on January 8, 2021. Since then, hundreds of download requests have been made.