• subtext@lemmy.world
      link
      fedilink
      English
      arrow-up
      44
      ·
      5 months ago

      It’s possible the “mystery” they refer to could be related to the identity of the hacker(s), how it got onto the routers in the first place, or the purpose for the attack

        • Odelay42@lemmy.world
          link
          fedilink
          English
          arrow-up
          21
          ·
          5 months ago

          You posses extremely niche knowledge. Being catty because the headline doesn’t suit your preferences comes off as fairly rude and pretentious. Good for you for understanding that the headline is misleading, but there are more relatable ways to say that.

      • BearOfaTime@lemm.ee
        link
        fedilink
        English
        arrow-up
        7
        ·
        5 months ago

        “mystery malware”

        The article clarifies the name of the malware.

        Clickbait BS. Why are you being disingenuous?

        • subtext@lemmy.world
          link
          fedilink
          English
          arrow-up
          11
          ·
          5 months ago

          Your reply reads to me as if you’re calling me disingenuous, which I can’t for the life of me understand. I’m not the author. I offered a possible explanation.

    • StarDreamer
      link
      fedilink
      English
      arrow-up
      13
      ·
      5 months ago

      As someone who works with 100Gbps networking:

      • why the heck do these routers run Lua of all things???
      • Max-P@lemmy.max-p.me
        link
        fedilink
        English
        arrow-up
        9
        ·
        5 months ago

        OpenWRT uses Lua for its web UI. The interpreter can be really small which works well for tiny embedded devices with mere megabytes of storage, and it’s much safer than writing a web GUI entirely in C.

        • StarDreamer
          link
          fedilink
          English
          arrow-up
          2
          ·
          5 months ago

          Yeah I completely forgot about the consumer side of things. I was expecting there being Cisco iOS/FRR router configs, not a full web dashboard.

      • redcalcium@lemmy.institute
        link
        fedilink
        English
        arrow-up
        2
        ·
        5 months ago

        I imagine the malware binary includes a lua interpreter for executing scripts fetched from its command and control server.