Over 100,000 internet-connected cameras may be falling prey to a new IoT malware that’s spreading through recently disclosed vulnerabilities in the products. The malware, called Persirai, has been found infecting Chinese-made wireless cameras since last month, security firm Trend Micro said on Tuesday. Sean Newman, Director at Corero Network Security commented below.
Sean Newman, Director at Corero Network Security:
“Reports of the Persirai botnet reinforce recent indications that hackers are reverting to more traditional malware techniques to launch DDoS attacks, as conventional methods, such as reflection and amplification, become harder to leverage, at a scale which delivers the required impact.
“With this step up in sophistication, past the simple brute-force login techniques utilised by Mirai, to exploit hidden vulnerabilities in the software itself, makes it notably harder for the attackers’ efforts to be thwarted at source. Even if vendors start putting effort into better securing their IoT devices, eliminating all vulnerabilities in their core software is a much harder task, suggesting DDoS attacks exploiting armies of IoT devices are going to be around for the foreseeable future.
“Whilst the ability to prevent these Botnets forming in the first place still lies in the hands of the IoT device manufacturers, there is protection available for organisations who are the ultimate targets of such attacks. When choosing the right solution, however, it is important to ensure that it is reactive enough to start blocking any attack traffic within seconds, without disrupting legitimate traffic in the process.”