Re: Meh...
"If you go to their report, there's no actionable info there"...
You mean other than:
a list of IoCs,
a link to the blog that lists all the affected vendors,
links to the related Shodan and Censys searches,
a detailed breakdown of the C2 communications...
http://researchcenter.paloaltonetworks.com/2017/04/unit42-new-iotlinux-malware-targets-dvrs-forms-botnet/#ioc
http://www.kerneronsec.com/2016/02/remote-code-execution-in-cctv-dvrs-of.html
https://www.shodan.io/search?query=%22Cross+Web+Server%22
https://censys.io/ipv4?q=%22Cross+Web+Server%22
Biting the hand that feeds IT
