New Chaos Malware Variant Targets Misconfigured Cloud Deployments

Cybersecurity researchers, including Darktrace, have identified a new variant of the Chaos malware that targets misconfigured cloud deployments, expanding its attack surface beyond traditional routers and edge devices. The malware, previously focused on infecting network infrastructure, now exploits vulnerabilities in cloud environments. No specific technical details, CVE IDs, or dates were provided in the report. The impact involves the botnet’s ability to compromise additional systems by leveraging misconfigurations in cloud setups. The variant also introduces a SOCKS proxy capability, though further specifics were not disclosed.