Jump to content

Mirai botnet returns to target IoT devices


sincity

Recommended Posts

A new variant of the Mirai malware targeting IoT devices has been discovered in the wild by security researchers from Palo Alto Networks.

The researchers first discovered this new strain earlier this year and now it is being used in a new IoT botnet targeting smart signage TVs and wireless presentation systems.

The authors of the botnet have spent a great deal of time upgrading older versions of the Mirai malware with new exploits and according to Palo Alto Networks, this new Mirai botnet uses 27 exploits with 11 that are completely new to Mirai altogether.

Mirai's built-in list of default credentials has also been expanded by the botnet operator to allow the malware to more easily gain access to devices that use default passwords. In total, four new username and password combinations have been added according to a new report from Palo Alto Network's Unit 42.

IoT devices

This new Mirai botnet is intended to infect IoT devices with exposed Telnet ports through the use of default credentials which many hardware makers continue to leave unchanged despite the security risks they pose.

While previous botnets using the Mirai malware have targeted routers, modems, security cameras and DVRs, the latest one is intentionally targeting smart signage TVs and wireless presentation systems, specifically LG's Supersign TVs and the WePresent WiPG-1000 wireless presentation system.

Both of these exploits have been available online for some time but this is the first instance researchers have seen of them being weaponized.

To avoid having your devices fall victim to the Mirai botnet, it is recommended that you only use devices from trusted manufacturers and immediately change the default passwords on those devices.

Via ZDNet

http://feeds.feedburner.com/~r/techradar/digital-home/~4/hqOoKseho5w
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...