Kaspersky honeypots – networks of virtual copies of various internet connected devices and applications – have detected 105 million attacks on IoT devices coming from 276,000 unique IP addresses in the first six months of the year. This figure is around nine times more than the number found in H1 2018, when only around 12 million attacks were spotted originating from 69,000 IP addresses.

 

Capitalizing on weak security of Internet of Things (IoT) products, cybercriminals are intensifying their attempts to create and monetize IoT botnets. This and other findings are a part of the ‘IoT: a malware story’ report on honeypot activity in the first half of 2019 (H1 2019).

 

Cyberattacks on IoT devices are booming, as even though more and more people and organizations are purchasing ‘smart’ (network-connected and interactive) devices, such as routers or DVR security cameras, not everybody considers them worth protecting.

 

Cybercriminals, however, are seeing more and more financial opportunities in exploiting such gadgets. They use networks of infected smart devices to conduct DDoS attacks or as a proxy for other types of malicious actions. To learn more about how such attacks work and how to prevent them, Kaspersky experts set up honeypots decoy devices used to attract the attention of cybercriminals and analyze their activities.

 

Based on data analysis collected from honeypots, attacks on IoT devices are usually not sophisticated, but stealth-like, as users might not even notice their devices are being exploited. The malware family behind 39% of attacks – Mirai – is capable of using exploits, meaning that these botnets can slip through old, unpatched vulnerabilities to the device and control it.

 

Another technique is password brute-forcing, which is the chosen method of the second most widespread malware family in the list – Nyadrop.

 

Nyadrop was seen in 38.57% of attacks and often serves as a Mirai downloader. This family has been trending as one of the most active threats for a couple of years now. The third most common botnet threatening smart devices – Gafgyt with 2.12% – also uses brute-forcing.

 

The researchers were also able to identify the locations where most infections were discovered to have originated during the first six months of 2019. Topping the list of sources of infections is China, with 30% of all attacks taking place from this country, second is Brazil with 19%, followed by Egypt with 12%. In the same period last year, the situation was different with 28% detected from Brazil, 14% from China and 11% from Japan.

 

“As people become more and more surrounded by smart devices, we are witnessing how IoT attacks are intensifying. Judging by the increased number of attacks and criminals’ persistence, we can say that IoT is a fruitful area for attackers that use even the most primitive methods, like guessing passwords and login combinations. This is much easier than most people think: the most common combinations by far are usually “support/support”, followed by “admin/admin”, “default/default”. It’s quite easy to change the default password, so we urge everyone to take this simple step towards securing your smart devices,” said Dan Demeter, security researcher at Kaspersky.

 

To keep your devices safe, Kaspersky recommends users to:

  • Install updates for the firmware you use as soon as possible. Once a vulnerability is found, it can be fixed through patches within updates.
  • Always change preinstalled passwords. Use complicated passwords that include both capital and lowercase letters, numbers and symbols if it’s possible.
  • Reboot a device as soon as you think it’s acting strangely. It might help get rid of existing malware, but this doesn’t reduce the risk of getting another infection.
  • Keep access to IoT devices restricted by a local VPN, allowing you to access them from your “home” network, instead of publicly exposing them on the internet.

 

Kaspersky recommends companies to take the following measures:

  • Use threat data feeds to block network connections originating from malicious network addresses detected by security researchers.
  • Make sure all devices software is up to date. Unpatched devices should be kept in a separate network inaccessible by unauthorized users.

 

Read the full text of the report on Securelist.com


RECOMMENDED ARTICLE FOR TECHWORLD


 
Realme Philippines Opens 100th Kiosk, Eyes 100 More Before End of 2019
Techworld Date Posted: 25 July 2019 5:20 PM | 104 Views
Realme Philippines Opens 100th Kiosk, Eyes 100 More Before End of 2019. See More
 
Realme Philippines Opens 100th Kiosk, Eyes 100 More Before End of 2019
Techworld Date Posted: 5:20 PM | 104 Views
Realme Philippines Opens 100th Kiosk, Eyes 100 More Before End of 2019See More

 
Free Content Now Available for DRAGON BALL XENOVERSE 2
Techworld Date Posted: 23 January 2018 4:46 PM | 331 Views
BANDAI NAMCO Entertainment Asia is pleased to share details about DRAGON BALL XENOVERSE 2 as new playable characters from the Tournament of Power in Dragon Ball Super. See More
 
Free Content Now Available for DRAGON BALL XENOVERSE 2
Techworld Date Posted: 4:46 PM | 331 Views
BANDAI NAMCO Entertainment Asia is pleased to share details about DRAGON BALL XENOVERSE 2 as new playable characters from the Tournament of Power in Dragon Ball SuperSee More

 
Power Mac Center Pioneers iPhone Display Repairs in PH
Techworld Date Posted: 23 July 2018 2:46 PM | 71 Views
Power Mac Center’s Apple Authorized Service Provider is now offering replacement repair services for damaged iPhone display screens. It is the first Service Center in the country to do so. Coverage includes cracked screens.... See More
 
Power Mac Center Pioneers iPhone Display Repairs in PH
Techworld Date Posted: 2:46 PM | 71 Views
Power Mac Center’s Apple Authorized Service Provider is now offering replacement repair services for damaged iPhone display screens. It is the first Service Center in the country to do so. Coverage includes cracked screens...See More

 
11 Practical New Year’s Resolutions from Kaspersky Lab
Techworld Date Posted: 12 January 2019 2:49 PM | 72 Views
The global cybersecurity company recommended the practical resolutions below that will greatly help highly active netizens better manage their data and money on the internet.. See More
 
11 Practical New Year’s Resolutions from Kaspersky Lab
Techworld Date Posted: 2:49 PM | 72 Views
The global cybersecurity company recommended the practical resolutions below that will greatly help highly active netizens better manage their data and money on the internet.See More

Rafael Aquino
Malware Over the Years
Techworld • By: Rafael Aquino | Date Posted: 4 April 2018 5:11 PM | 56 Views
I remember I saw a tweet back in 2016 about how malware had evolved over the years. Viruses, trojans, spyware – all of these were simply made to make money. Cybercriminals are really just.... See More
Rafael Aquino
Malware Over the Years
Techworld • By: Rafael Aquino | Date Posted: 5:11 PM | 56 Views
I remember I saw a tweet back in 2016 about how malware had evolved over the years. Viruses, trojans, spyware – all of these were simply made to make money. Cybercriminals are really just...See More

 
Intensified Financial Hunting by Lazarus Group Marked by Fake Supply Chain Attacks, MacOS Malware
Techworld Date Posted: 28 September 2018 4:04 PM | 358 Views
Kaspersky Lab reveals today that heightened cyberheist activity by the notorious Lazarus group will give rise to more fake supply chain attacks to deliver ever stealthier infections. The cybergang has also been discovered to.... See More
 
Intensified Financial Hunting by Lazarus Group Marked by Fake Supply Chain Attacks, MacOS Malware
Techworld Date Posted: 4:04 PM | 358 Views
Kaspersky Lab reveals today that heightened cyberheist activity by the notorious Lazarus group will give rise to more fake supply chain attacks to deliver ever stealthier infections. The cybergang has also been discovered to...See More

 
Chinese-Speaking APT Actor Caught Spying on Pharmaceutical Organizations
Techworld Date Posted: 15 March 2018 11:36 AM | 778 Views
Kaspersky Lab’s researchers have discovered evidence of an emerging and alarming trend: more and more advanced cyber threat actors are turning their attention to attacks against the healthcare sector. The infamous PlugX malware has.... See More
 
Chinese-Speaking APT Actor Caught Spying on Pharmaceutical Organizations
Techworld Date Posted: 11:36 AM | 778 Views
Kaspersky Lab’s researchers have discovered evidence of an emerging and alarming trend: more and more advanced cyber threat actors are turning their attention to attacks against the healthcare sector. The infamous PlugX malware has...See More

 
Filipinos to #DiscoverRealValue with realme 3, the Budget and Midrange Segment Disruptor
Techworld Date Posted: 27 March 2019 4:40 PM | 74 Views
Game changer smartphone brand realme brings to the Philippines the latest addition to its product line, the realme 3. Designed to enable users to #DiscoverRealValue, realme 3 delivers strong system performance, extraordinary build, upgraded.... See More
 
Filipinos to #DiscoverRealValue with realme 3, the Budget and Midrange Segment Disruptor
Techworld Date Posted: 4:40 PM | 74 Views
Game changer smartphone brand realme brings to the Philippines the latest addition to its product line, the realme 3. Designed to enable users to #DiscoverRealValue, realme 3 delivers strong system performance, extraordinary build, upgraded...See More

 
Watch and Enjoy The International Pubstomp 2017 the right Way
Techworld Date Posted: 10 August 2017 2:28 PM | 63 Views
   – Join MSI Gaming as they bring you #TI7 Viewing Party at Club Nix05 from 10pm of Saturday, August 12th, until Sunday dawn!   Gain EXCLUSIVE access to Official TI7 Merchandise available.... See More
 
Watch and Enjoy The International Pubstomp 2017 the right Way
Techworld Date Posted: 2:28 PM | 63 Views
   – Join MSI Gaming as they bring you #TI7 Viewing Party at Club Nix05 from 10pm of Saturday, August 12th, until Sunday dawn!   Gain EXCLUSIVE access to Official TI7 Merchandise available...See More

PC Buyers Guide
Kids Appetite for Online Retails Sites Grows Threefold, Amid Shift in Browsing Behavior
Techworld • By: PC Buyers Guide | Date Posted: 19 June 2019 11:41 AM | 67 Views
Kids Appetite for Online Retails Sites Grows Threefold, Amid Shift in Browsing Behavior. See More
PC Buyers Guide
Kids Appetite for Online Retails Sites Grows Threefold, Amid Shift in Browsing Behavior
Techworld • By: PC Buyers Guide | Date Posted: 11:41 AM | 67 Views
Kids Appetite for Online Retails Sites Grows Threefold, Amid Shift in Browsing BehaviorSee More


Power by

Download Free AZ | Free Wordpress Themes