\r\n A vulnerability has been discovered in the firmware of Zhejiang Uniview ISC camera model 2500-S up to firmware version 20210930. This vulnerability allows for OS command injection by manipulating specific request arguments. \r\n \r\n The vulnerability, identified as CVE-2024-0778, affects products that are no longer supported by the maintainer as the product has reached its end-of-service stage. \r\n \r\n The Akamai Security Intelligence Response Team (SIRT) documented a Mirai malware variant and observed an attempt to exploit the vulnerability that targeted our honeypots.  \r\n \r\n The threat actor behind the attacks also targeted other URIs with different payloads, indicating that multiple system architectures are being targeted. \r\n \r\n The command and control (C2) IP addresses associated with the attacks are based in Vietnam and resolved to the C2 domain net-killer[.]online, which was registered in January 2024.…