RondoDox Botnet Campaign Targets TBK DVRs and Four-Faith Routers

Red | Attack Report
Download PDF

A newly identified botnet campaign, RondoDox, is actively exploiting critical vulnerabilities in TBK DVRs and Four-Faith devices, enabling attackers to covertly compromise systems and repurpose them for malicious operations. This sophisticated malware employs evasion and persistence techniques, transforming overlooked network devices into stealth proxies for coordinated, large-scale DDoS campaigns. The campaign underscores the growing operational risks posed by unpatched, poorly secured infrastructure in enterprise and industrial environments.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox