Patches are available for most of these vulnerabilities but unfortunately, many consumers or enterprises never take the necessary steps to patch IoT devices. The malware is still being revised and updated, and new vulnerabilities could be added any time. A few days after it was discovered, another exploit against D-Link devices was added. IoT Reaper targets nine specific firmware vulnerabilities affecting home routers, cameras and video recorders made by Linksys, D-Link, VACRON, NUUO, NETGEAR, AVTECH, Maginon, Avacom, and others. IoT Reaper is similar – It is infecting devices with malware effectively hijacking the device for whenever the botnet controller is ready to issue their commands. IoT Botnets use Internet connected devices which have been infected by the same malware and are controlled by a threat actor from a remote location. One thing is for sure: This one won’t be the last one. It is estimated to have infected 28,000 devices and and another 2 million are vulnerable to attack. Although the botnet seems to be smaller and less dangerous than first estimated, both enterprises and device manufacturers should think about their strategies to fight threats. IoT Reaper – recently discovered by researchers at Netlab 360 and Check Point research firms – is based on the Mirai botnet code. But fear is already growing over the next one to hit. The Mirai botnet’s massive DDoS attacks are still firmly lodged in the memory IoT manufacturers.
0 Comments
Leave a Reply. |