MESSAGE
DATE | 2017-11-05 |
FROM | Ruben Safir
|
SUBJECT | Subject: [Hangout - NYLXS] Internet of things now worries
|
From hangout-bounces-at-nylxs.com Sun Nov 5 02:24:46 2017 Return-Path: X-Original-To: archive-at-nylxs.com Delivered-To: archive-at-nylxs.com Received: from www.mrbrklyn.com (www.mrbrklyn.com [96.57.23.82]) by mrbrklyn.com (Postfix) with ESMTP id 0039A160876; Sun, 5 Nov 2017 02:24:39 -0500 (EST) X-Original-To: hangout-at-nylxs.com Delivered-To: hangout-at-nylxs.com Received: from [10.0.0.62] (www3.mrbrklyn.com [96.57.23.83]) by mrbrklyn.com (Postfix) with ESMTP id 5165A160876 for ; Sun, 5 Nov 2017 02:24:20 -0500 (EST) To: Hangout From: Ruben Safir Message-ID: Date: Sun, 5 Nov 2017 02:24:20 -0500 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.4.0 MIME-Version: 1.0 Content-Language: en-US Subject: [Hangout - NYLXS] Internet of things now worries X-BeenThere: hangout-at-nylxs.com X-Mailman-Version: 2.1.17 Precedence: list List-Id: NYLXS Tech Talk and Politics List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Errors-To: hangout-bounces-at-nylxs.com Sender: "Hangout"
https://siliconangle.com/blog/2017/10/22/new-reaper-botnet-malware-infects-= two-million-iot-devices/?utm_content=3D62590041&utm_medium=3Dsocial&utm_sou= rce=3Dlinkedin
New Reaper malware infects 2 million-plus =E2=80=9Cinternet of things=E2=80= =9D devices
by Duncan Riley
UPDATED 22:54 EST . 22 OCTOBER 2017
reaperiot =
A recently discovered form of botnet malware has been found rapidly spreading, with more than 2 million =E2=80=9Cinternet of things=E2=80=9D de= vices believed to have already been infected.
Dubbed IoT_Reaper by security researchers at Chinese security company Qihoo 360, the malware is based on the infamous Mirai internet of things worm that first compromised millions of devices in 2016 =E2=80=94 but with = some noticeable differences.
One of those differences is that Reaper doesn=E2=80=99t attempt to crack passwords on targeted devices. Instead, it spreads itself using known device vulnerabilities such as attempting to log in using a preset list of default or weak credentials via open Telnet ports. Qihoo 360 notes that Reaper currently has nine different packages that target vulnerabilities in devices made by D-Link, Netgear, Linksys, AVTech, Vacron, JAWS and GoAhead.
Putting the number of infected devices at the smaller but still significant figure of 1 million, researchers at Check Point Software Technologies Ltd. wrote late last week that =E2=80=9Cwhile some technical aspects lead us to suspect a possible connection to Mirai, this is an entirely new and far more sophisticated campaign that is rapidly spreading worldwide.=E2=80=9D
Both companies said they have not detected the Reaper botnet being used for nefarious purposes so far, but given it has a limited number of purposes, it=E2=80=99s only a matter of time until those behind it start us= ing it.
=E2=80=9CIn terms of attacking command, although we saw support of DDoS [distributed denial of service] attack in the source file =E2=80=A6 we have= not seen actual DDoS attack so far,=E2=80=9D the researchers at Qihoo 360 said, before adding that =E2=80=9Cthis means the attacker is still focusing on spreading the botnets.=E2=80=9D The Check Point researchers noted that =E2= =80=9Cit is too early to guess the intentions of the threat actors behind it, but with previous botnet DDoS attacks essentially taking down the internet, it is vital that organizations make proper preparations.=E2=80=9D
Operators of internet of things devices are advised to check that they are not exposing vulnerable devices to the internet, to apply any security patches that may be available for the device and, if they detect an infected device, they should immediately take it offline.
-- =
So many immigrant groups have swept through our town that Brooklyn, like Atlantis, reaches mythological proportions in the mind of the world - RI Safir 1998 http://www.mrbrklyn.com
DRM is THEFT - We are the STAKEHOLDERS - RI Safir 2002 http://www.nylxs.com - Leadership Development in Free Software http://www2.mrbrklyn.com/resources - Unpublished Archive http://www.coinhangout.com - coins! http://www.brooklyn-living.com
Being so tracked is for FARM ANIMALS and and extermination camps, but incompatible with living as a free human being. -RI Safir 2013 _______________________________________________ Hangout mailing list Hangout-at-nylxs.com http://www.nylxs.com/mailman/listinfo/hangout
|
|