Following the news about an IoT malware that plays cat and mouse with Mirai. It was dubbed “Hajime” and from the start it seems to have had it in for the infamous Mirai Internet of Things (IoT) botnet used to launch last October’s Terabit DDoS attack on DNS provider Dyn. Giovanni Vigna, CTO at Lastline commented below.
Giovanni Vigna, CTO at Lastline:
“The particular nature of IoT botnets is that their infection pattern is more similar to a worm, in which vulnerable devices are first identified through scanning and then compromised. This is different from traditional botnets that usually rely on drive-by attacks or other user-centric techniques in order to install their components. As a result, IoT bot net compete with one another, and when they infect a device they usually disable the vulnerable feature to prevent other botnets to take hold.”
