In response to reports by the FortiGuard Labs team on the emergence of the OMG botnet, a new Mirai variant that seeks to turn IoT devices into proxy servers – two cybersecurity experts commented below.
Sean Newman, Director Product Management at Corero Network Security:
“By contrast, this OMG variant seems to look for vulnerable IoT devices within a target organisation and then plant a proxy on them, so that the IoT device can be used as a gateway into that organisation’s network, to perform other nefarious activities – likely relating to searching for and exfiltrating sensitive information.
“Today’s DDoS attacks are often used as a smokescreen, designed to distract IT teams from more serious network intrusions and data theft. But this may be the first example of an IoT botnet which can both launch a DDoS attack smokescreen and also simultaneously enable more nefarious activities. To protect against these sophisticated threats, it’s essential to include always-on DDoS mitigation as part of a layered defence strategy to detect and defend against malicious activity on your network, as it occurs.”
Gabriel Gumbs, VP of Product Strategy at STEALTHbits Technologies:
“In a digital world of whack-a-mole, insecure IoT devices are at this point largely being ignored as tools that can be used for more than just DDoS activities. They are not to be ignored, and hopefully the naysayers are well past calling IoT a passing trend.”
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.