The post by Unit 42 covers how the Amnesia malware is delivered and distributed within the targeted network and describes how it targets an unpatched vulnerability affecting Chinese-made DVRs. Analysis shows that 227,000 devices worldwide are at risk. The top five countries in terms of exposure are: Taiwan, the United States, Israel, Turkey, and India. This is a scenario similar to the Mirai botnetfrom the fall, and there is a real risk that this botnet could be used to levy DDoS attacks.
Palo Alto Networks has blocked the Domains used by this malware for command and control through PAN-DB and Threat Prevention.