Mikrotik is mentioned specifically in this press report http://www.theregister.co.uk/2017/10/20/iot_reaper_botnet_growing_fast/
What is the exposure and is this patched ?
Hmmm… Pretty quiet on this. I guess I need to wait for Monday so Mikrotik can officially respond.
Probably the HTTP server content length exploit. Should be fine if you’re up to date.
Well I took a look around and I dont see where Mikrotik was used in this ? So im not sure what exploit, if any, is being used ?
I have clients on tyhe current stable and a few on the current beta. Im on the current beta.
Ive decided to try out a scheduled script to auot check for and install any updates. I run this once a day now. This has been going pretty well. YES kinda scary but I would rather be update to date automatically.