Arris Modems

Security researchers at Nomotion found three hardcoded backdoors in discontinued Arris NVG589 and NVG599 modems. Threat actors could exploit these backdoors to take control of the device with elevated privileges, install new firmware, or add the modem to a botnet. The NJCCIC recommends users and administrators of the affected modems apply the mitigation instructions provided by Nomotion or discontinue use of the affected modems.