DDoS Attackers Exploited Insecure IoT Gadgets From Chinese Company

...

A Chinese electronics manufacturer admitted that its products inadvertently contributed to last week's massive cyberattack that knocked popular Web services offline.

On Friday, a number of major sites—Twitter, Etsy, GitHub, SoundCloud, Spotify, Shopify—experienced outages as the result of a DDoS attack on DNS provider Dyn. One big part of the problem: the Mirai botnet, which scours the Web for poorly protected IoT-connected devices and enlists them to overwhelm a target with online traffic, causing an outage.

"We can confirm, with the help of analysis from Flashpoint and Akamai, that one source of the traffic for the attacks were devices infected by the Mirai botnet. We observed 10s of millions of discrete IP addresses associated with the Mirai botnet that were part of the attack," Dyn said in a statement.

In this case, a Mirai-based botnet latched onto hacked DVRs and IT cameras made by Hangzhou Xiongmai Technology, which used weak factory-default usernames and passwords to safeguard its products.

"Mirai is a huge disaster for the Internet of Things," the Chinese firm told Computerworld. "[We] have to admit that our products also suffered from hackers' break-in and illegal use."

Xiongmai patched its flaws in September 2015, the company told Computerworld. Its devices now ask customers to change the default password upon first use, but products running older versions of the firmware remain vulnerable. As a result, they should update and change the default username and password. Folks can also disconnect the gadget from the Internet altogether.

Xiongmai Technology did not immediately respond to a request for comment.

Friday's disruption "globally might be the beginning of a new era of Internet attacks conducted via 'smart' things," Chester Wisniewski, principal research scientist from Sophos, said in a statement. "Clearly they aren't as smart as we think, if they can be so easily commandeered by random deviants from the Internet to impact major services like Twitter, Reddit, and Spotify.

"There are [tens] of millions more insecure 'smart' things that could cause incredible disruptions, if harnessed," Wisniewski added.

DDoS attacks skyrocketed in 2015, and don't show any sign of slowing down. Security researcher Brian Krebs last month became the latest high-profile victim when his website suffered "a historically large" raid, which he claimed was revenge for exposing two hackers who provided DDoS services. Now that the source code behind the raid has been released online, Krebs suggested "the Internet will soon be flooded with attacks."

Categories
GAMES
0 Comment

Leave a Reply

Captcha image


RELATED BY

  • 5300c769af79e

    Google Buys Machine Learning Startup Moodstocks

    The underground marketplace is booming and only getting bigger, more sophisticated, and competitiv Google has acquired Paris-based machine learning startup Moodstocks as part of its ongoing effort to improve visual recognition technology.Object recognition is one of the more difficult problems for machine learning, and it's a problem that Google has been working on for a while.
  • 5300c769af79e

    Google: QuadRooter Threat Blocked On Most Android Devices

    Client computing is increasingly providing a back door into the enterprise for the compromise and Google has confirmed that a feature called Verify Apps, built into Google Play Services, is intended to safeguard Android devices from the QuadRooter security threat.A team of mobile researchers at security firm Check Point initially discovered the set of flaws and dubbed it "QuadRooter.
  • 5300c769af79e

    Samsung Galaxy Note 7: Don't Try to Fix it Yourself

    They found a Qualcomm Snapdragon 820 processor and NFC controller among a chipset that is "nearly identical" to the one found in the earlier Galaxy S7 and S7 Edge smartphones.Consumers can pick up the latest Samsung device from AT&T, Sprint, T-Mobile, US Cellular, and Verizon, as well as Samsung.
  • 5300c769af79e

    Report: Samsung to Implement "Focus" Communication Hub Into Galaxy Note 6

    According to the latest from SamMobile, Samsung will look to implement a feature called Samsung Focus into the Galaxy Note 6, a communication hub of sorts, similar to BlackBerry Hub.Claimed by SamMobile, Focus will focus on email, calendar events, handle contacts, and memos.