• No events
AEC v1.0.4

Cyber Security Info

Linux malware utilizies Heartbleed vulnerability

June 3, 2014

Share Button

Luis Grangeia from SysValue has presented a proof-of-concept malware called Cupid. Cupid consists of two updates for Linux programs hostapd and wpa_supplicant which are used to create Wi-Fi access point or to connect to a wireless network. This way, it can be used for both attacking vulnerable networks as well as setting up a fake wireless network and attacking connected devices. Cupid attacks devices using Extensible Authentication Protocol (EAP) protocol and is able to attack vulnerable clients or servers even before the TLS connection is fully established and without any knowledge of usernames and passwords. 

Share Button