Tests show that deploying malware in a persistent manner on load balancer firmware is within reach of less sophisticated attackers.
November 9, 2022 By Lucian Constantin
Over the past several years, hackers have targeted public-facing network devices such as routers, VPN concentrators, and load balancers to gain a foothold into corporate networks. While finding remote code execution vulnerabilities in such devices is not uncommon, incidents where attackers were able to deploy malware on them that can survive restarts or firmware upgrades have been rare and generally attributed with sophisticated APT groups.
