2019, Internet and IoT - Cyber Security Informer

P2P Weakness Exposes Millions of IoT Devices

Krebs on Security

APRIL 26, 2019

iLnkP2p is bundled with millions of Internet of Things (IoT) devices, including security cameras and Webcams, baby monitors, smart doorbells, and digital video recorders. He found that 39 percent of the vulnerable IoT things were in China; another 19 percent are located in Europe; seven percent of them are in use in the United States.

IoT

IoT Firewall Manufacturing Computers and Electronics

MY TAKE: Why DDoS weapons will proliferate with the expansion of IoT and the coming of 5G

The Last Watchdog

MARCH 28, 2019

Related: IoT botnets now available for economical DDoS blasts. The author of Mirai used a sledgehammer to kill a fly: the DDoS bombardment was so large that it also wiped out Dyn , a UK-based internet performance vendor. Here we are in 2019 and the same attack strategy continues to persist. Beyond DDoS.

DDOS

DDOS IoT DNS Internet

IoT Unravelled Part 2: IP Addresses, Network, Zigbee, Custom Firmware and Soldering

Troy Hunt

NOVEMBER 23, 2020

So, peeling back that next layer, the whole IoT space isn't just about devices that get their own IP address on your network and talk over TCP (or UDP). IoT and IP Addresses So, what happens when you start filling your home with IoT things? IoT and IP Addresses So, what happens when you start filling your home with IoT things?

Firmware

Firmware IoT Wireless Manufacturing

IoT Cybersecurity Bill Proposed to Congress

Adam Levin

MARCH 13, 2019

Congress proposed a bill to improve the security of internet-enabled devices called the Internet of Things (IoT) Cybersecurity Improvement Act of 2019. The bipartisan legislation is aimed at establishing standards for any internet-connected device acquired by or used by an employee of the federal government.

IoT

IoT Cybersecurity Internet Internet

5 IoT Security Predictions for 2019

Security Affairs

DECEMBER 21, 2018

2018 was the year of the Internet of Things (IoT), massive attacks and various botnets hit smart devices, These are 5 IoT Security Predictions for 2019. 2019 will continue these trends but at a faster pace. 2019 will continue these trends but at a faster pace. IoT Attacks in 2018.

IoT

IoT Manufacturing Internet Internet

MY TAKE: Why consumers are destined to play a big role in securing the Internet of Things

The Last Watchdog

MARCH 13, 2019

In the not too distant future, each one of us will need to give pause, on a daily basis, to duly consider how we purchase and use Internet of Things devices and services. The drivers of IoT-centric commerce appear to be unstoppable. Count on the wide deployment of IoT systems to continue at an accelerated rate. This is coming.

Internet

Internet Internet IoT Energy and Utilities

Last Watchdog’s IoT and ‘zero trust’ coverage win MVP awards from Information Management Today

The Last Watchdog

DECEMBER 5, 2019

I’m privileged to share news that two Last Watchdog articles were recognized in the 2019 Information Management Today MVP Awards. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. So keep reading and sharing. And thanks for your support.

IoT

IoT Cyber Risk Internet Internet

US House Passes IoT Cybersecurity Improvement Act

Security Affairs

SEPTEMBER 21, 2020

House of Representatives passed the IoT Cybersecurity Improvement Act, a bill that aims at improving the security of IoT devices. House of Representatives last week passed the IoT Cybersecurity Improvement Act, a bill designed to improve the security of IoT devices. Mark Warner (D-Va.) Pierluigi Paganini.

IoT

IoT Cybersecurity Advertising Government

Britain introduces IOT Device Security Legislation

CyberSecurity Insiders

NOVEMBER 25, 2021

A new legislation was introduced in the Britain’s parliament last week aiming to better protect IoT devices from sophisticated hackers. Now, comes the big question…what if companies indulging in the manufacturing of IoT cannot comply with the newly planned Britain’s digital law.? Well, it’s simple….the Hope it does!

IoT

IoT Manufacturing Telecommunications Cyber Attacks

The IoT Cybersecurity Act of 2020: Implications for Devices

eSecurity Planet

JANUARY 22, 2021

In 2019, there were an estimated 9.9 billion Internet of Things (IoT) devices. As more information about IoT device vulnerabilities is published, the pressure on industry and government authorities to enhance security standards might be reaching a tipping point. Implications for IoT devices. By 2025, we expect 21.5

IoT

IoT Cybersecurity Manufacturing Government

Attacks Escalating Against Linux-Based IoT Devices

eSecurity Planet

JANUARY 20, 2022

Incidents of malware targeting Linux-based Internet of Things (IoT) devices jumped by more than a third in 2021, with three malware families the primary drivers behind the increase. Threats to Open Source, IoT. Also read: Top IoT Security Solutions for 2022. A Fast-Growing Attack Surface.

IoT

IoT DDOS Malware Internet

Mozi Botnet is responsible for most of the IoT Traffic

Security Affairs

SEPTEMBER 20, 2020

The Mozi botnet accounted for 90% of the IoT network traffic observed between October 2019 and June 2020, IBM reported. Mozi is an IoT botnet that borrows the code from Mirai variants and the Gafgyt malware , it appeared on the threat landscape in late 2019. ” reads the report published by IBM.

IoT

IoT DDOS Architecture Passwords

The Internet of Things Is Everywhere. Are You Secure?

Security Boulevard

MARCH 18, 2021

From smart homes that enable you to control your thermostat from a distance to sensors on oil rigs that help predict maintenance to autonomous vehicles to GPS sensors implanted in the horns of endangered black rhinos , the internet of things is all around you. With the increase in connected devices comes an increase in IoT attacks.

Internet

Internet Internet IoT Software

New Ttint IoT botnet exploits two zero-days in Tenda routers

Security Affairs

OCTOBER 5, 2020

Security researchers provided technical details about an IoT botnet dubbed Ttint that has been exploiting two zero-days in Tenda routers. Security researchers at Netlab, the network security division Qihoo 360, have published a report that details an IoT botnet dubbed Ttint. This botnet does not seem to be a very typical player.”

IoT

IoT Firmware Advertising DNS

Lousy IoT Security

Schneier on Security

DECEMBER 19, 2019

OTA -- over-the-air updates) were stored in a publicly accessible AWS S3 bucket that also lacked TLS encryption (CVE-2019-16270, CVE-2019-16274). Unauthenticated web server: a web server running Android OS on port 8080 discloses all whiteboards stored locally on the device (CVE-2019-16271). These aren't subtle vulnerabilities.

IoT

IoT Wireless System Administration Encryption

Bot list with Telnet credentials for more than 500,000 servers and IoT devices leaked online

Security Affairs

JANUARY 19, 2020

The availability online of a new collection of Telnet credentials for more than 500,000 servers, routers, and IoT devices made the headlines. The list appears to be the result of an Internet scan for devices using default credentials or easy-to-guess passwords. 33000+ telnet credentials of IoT devices exposed on pastebin.

IoT

IoT DDOS InfoSec Internet

Microsoft Patch Tuesday updates for February 2019 fixes IE Zero-Day

Security Affairs

FEBRUARY 12, 2019

Microsoft released Patch Tuesday updates for February 2019 that address 77 flaws, including an Internet Explorer issue that has been exploited in attacks. Microsoft released Patch Tuesday updates for February 2019 that address 77 flaws, 20 critical vulnerabilities, 54 important and 3 moderate in severity. Pierluigi Paganini.

Internet

Internet Internet Advertising IoT

OT attacks increased by over 2000 percent in 2019, IBM reports

Security Affairs

FEBRUARY 11, 2020

According to IBM, OT attacks increased by over 2000 percent in 2019, most of them involved the Echobot IoT malware. IBM’s 2020 X-Force Threat Intelligence Index report analyzes the threat landscape in 2019, the experts observed a spike in the number of OT attacks. “ OT attacks hit an all-time high. Pierluigi Paganini.

Advertising

Advertising Malware IoT Technology

New Shodan Monitor service allows tracking Internet-Exposed devices

Security Affairs

MARCH 28, 2019

Shodan IoT search engine announced the launch of a new service called Shodan Monitor designed to help organizations to maintain track of systems connected to the Internet. Shodan Monitor is a precious tool for organizations that can determine their surface of attack assessing their Internet-exposed systems. Pierluigi Paganini.

Internet

Internet Internet IoT Advertising

The Growing Presence (and Security Risks) of IoT

Thales Cloud Protection & Licensing

NOVEMBER 6, 2019

As most of us know, IoT devices are on the rise in enterprise networks. According to McKinsey & Company , the proportion of organizations that use IoT products has grown from 13 percent in 2014 to 25 percent today. The issue is that these tens of billions of new devices will likely amplify the inherent security risks of IoT.

IoT

IoT Risk Energy and Utilities Healthcare

Chinese Authorities Arrest Hackers Behind Mozi IoT Botnet Attacks

The Hacker News

SEPTEMBER 2, 2021

The operators of the Mozi IoT botnet have been taken into custody by Chinese law enforcement authorities, nearly two years after the malware emerged on the threat landscape in September 2019.

IoT

IoT Internet Internet Malware

IoT devices at major Manufacturers infected with crypto-miner

Security Affairs

FEBRUARY 8, 2020

Hackers have infected with a piece of malware some IoT devices running Windows 7 designed by three of the world’s largest manufacturers. Security experts from TrapX reported that some IoT devices running Windows 7 have been infected with a piece of malware, is it a supply chain attack? ” reads the report p ublished by TrapX.”First,

Manufacturing

Manufacturing IoT Malware Cryptocurrency

Exclusive: MalwareMustDie analyzes a new IoT malware dubbed Linux/ AirDropBot

Security Affairs

SEPTEMBER 30, 2019

After 2 years of waiting, MalwareMustDie returns with an excellent page of malware analysis of a new IoT malware: Linux/AirDropBot. The beginning of the story: another IoT malware in the wild? Coming to the core topic: IoT botnet threat and their ecosystem.

IoT

IoT Malware Internet Internet

Q&A: Why emerging IoT platforms require the same leading-edge security as industrial controls

The Last Watchdog

JANUARY 7, 2019

In 2019, and moving ahead, look for legacy IT business networks to increasingly intersect with a new class of networks dedicated to controlling the operations of a IoT-enabled services of all types, including smart buildings, IoT-enabled healthcare services and driverless cars. All of this is done by automated systems.

IoT

IoT Digital transformation Accountability Risk

Flaws in mobile Internet protocol GTP allow hackers to target 5G users

Security Affairs

JUNE 15, 2020

” Between 2018 and 2019 the researchers assessed 28 telecom operators in Europe, Asia, Africa, and South America and verifies the presence of the vulnerabilities in the GTP protocol. phone number) of a real subscriber and impersonate him to access the Internet. Faults in the GTP protocol directly impact 5G networks.”

Mobile

Mobile Internet Internet Advertising

BotenaGo botnet targets millions of IoT devices using 33 exploits

Security Affairs

NOVEMBER 11, 2021

Researchers at AT&T discovered a new BotenaGo botnet that is using thirty three exploits to target millions of routers and IoT devices. BotenaGo is a new botnet discovered by researchers at AT&T that leverages thirty three exploits to target millions of routers and IoT devices. CVE-2016-6277 NETGEAR R6250 before 1.0.4.6.Beta,

IoT

IoT Firmware Malware Wireless

China-linked APT group Salt Typhoon compromised some U.S. internet service providers (ISPs)

Security Affairs

SEPTEMBER 26, 2024

internet service providers (ISPs) as part of a cyber espionage campaign code-named Salt Typhoon. internet service providers in recent months as part of a cyber espionage campaign code-named Salt Typhoon. internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.”

Internet

Internet Internet DNS Telecommunications

ARES ADB IOT Botnet targets Android Set Top Boxes (STB) and TVs

Security Affairs

AUGUST 31, 2019

Researchers from WootCloud Labs have uncovered a new IoT botnet named Ares that is targeting Android-based devices. Experts from WootCloud Labs have spotted a new IoT botnet tracked as Ares that is targeting Android-based devices that have a debug port exposed online. IoT #malware branches seen in ???????? #IoT ARES 11,5% 2.

IoT

IoT Passwords Advertising Malware

Silex malware bricks thousands of IoT devices in a few hours

Security Affairs

JUNE 26, 2019

Security experts warn of a new piece of the Silex malware that is bricking thousands of IoT devices, and the situation could rapidly go worse. Cashdollar (@_larry0) June 25, 2019. Silex is not the first IoT malware with this behavior, back in 2017 BrickerBot bricked millions of devices worldwide. ” reported ZDnet.

IoT

IoT Malware Advertising Firmware

Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways

Security Affairs

MAY 19, 2020

which is a product that became end-of-life (EOL) in 2015 and end-of-support-life (EOSL) in 2019.” The post Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways appeared first on Security Affairs. ” reads the analysis published by Palo Alto Networks. Pierluigi Paganini.

IoT

IoT DDOS Authentication Advertising

Dark Nexus, a new IoT botnet that targets a broad range of devices

Security Affairs

APRIL 8, 2020

Cybersecurity researchers discovered a new IoT botnet, tracked as Dark Nexux, that is used to launch distributed denial-of-service (DDoS) attacks. Dark Nexux is the name of a new emerging IoT botnet discovered by Bitdefender that is used to launch DDoS attacks. through 8.6). through 8.6). Pierluigi Paganini.

IoT

IoT DDOS Architecture Advertising

Million of Telestar Digital GmbH IoT radio devices can be remotely hacked

Security Affairs

SEPTEMBER 10, 2019

A security researcher disclosed zero-day flaws in Telestar Digital GmbH IoT radio devices that could be exploited by remote attackers to hijack systems without any user interaction. The vulnerabilities have been tracked as CVE-2019-13473 and CVE-2019-13474. . SecurityAffairs – IoT radio devices, hacking). .

IoT

IoT Hacking Firmware Advertising

Millions of IoT Devices exposed to remote hacks due to iLnkP2P flaws

Security Affairs

APRIL 26, 2019

Experts discovered security flaws in the iLnkP2P peer-to-peer (P2P) system that exposes millions of IoT devices to remote attacks. The iLnkP2P system allows users to remotely connect to their IoT devices using a mobile phone or a PC. Potentially affected IoT devices include cameras and smart doorbells. Pierluigi Paganini.

IoT

IoT Hacking Manufacturing Advertising

GUEST ESSAY: Securely managing access controls is vital to preserving the privacy of healthcare data

The Last Watchdog

NOVEMBER 8, 2021

There’s no doubt, the increasing use of telemedicine, the explosion of health-based cloud apps, and innovative medical IoT devices are improving the patient care experience. The largest privacy incident was reported in 2019 at American Medical Collection Agency (AMCA), a third-party billing and collections company.

Healthcare

Healthcare Technology Architecture IoT

Cybersecurity for IoT: The Road We’ve Traveled, The Road Ahead

NSTIC

MAY 16, 2022

The NIST Cybersecurity for IoT program published Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks (NISTIR 8228) in June 2019, nearly 3 years ago. Since then, IoT technology has continued to develop and be adopted across sectors and markets.

IoT

IoT Cybersecurity Manufacturing Marketing

Critical Success Factors to Widespread Deployment of IoT

Thales Cloud Protection & Licensing

FEBRUARY 16, 2021

Critical Success Factors to Widespread Deployment of IoT. Digital technology and connected IoT devices have proliferated across industries and into our daily lives. Finally, IoT devices are being used extensively in smart vehicles and home appliances to provide enhanced user experiences. Threat vectors on IoT.

IoT

IoT Manufacturing Energy and Utilities Data collection

Administrator of RSOCKS Proxy Botnet Pleads Guilty

Krebs on Security

JANUARY 24, 2023

Denis Kloster, as posted to his Vkontakte page in 2019. Many of the infected systems were Internet of Things (IoT) devices , including industrial control systems, time clocks, routers, audio/video streaming devices, and smart garage door openers. A copy of the passport for Denis Emelyantsev, a.k.a. Image: archive.org.

Cybercrime

Cybercrime Advertising IoT Malware

New Mirai botnet targets tens of flaws in popular IoT devices

Security Affairs

JUNE 22, 2023

Since March 2023, researchers at Palo Alto Networks Unit 42 have observed a new variant of the Mirai botnet targeting multiple vulnerabilities in popular IoT devices. “The widespread adoption of IoT devices has become a ubiquitous trend. As a result, protecting IoT devices against such threats becomes an urgent task.”

IoT

IoT Malware Encryption DDOS

Russia-linked STRONTIUM APT targets IoT devices to hack corporate networks

Security Affairs

AUGUST 6, 2019

The STRONTIUM Russia-linked APT group is compromising common IoT devices to gain access to several corporate networks. Researchers at Microsoft observed the Russia-linked APT group STRONTIUM abusing IoT devices to gain access to several corporate networks. ” IoT risk must be taken seriously. ” continues Microsoft.

IoT

IoT Hacking Advertising Government

Why Healthcare IoT Requires Strong Machine Identity Management

Security Boulevard

MAY 30, 2022

Why Healthcare IoT Requires Strong Machine Identity Management. The healthcare industry has been leveraging IoT devices for years, steadily increasing its use in facilities and patient care. By 2027, the IoT in Healthcare market is expected to reach $290 billion , up from just $60 billion in 2019. brooke.crothers.

Healthcare

Healthcare IoT Manufacturing Risk

Top IoT predictions for 2021

CyberSecurity Insiders

MARCH 14, 2021

So, with all the uncertainty, why bother with an annual IoT prediction survey ? The IoT is still booming! Despite the challenges of 2020, the IoT industry is thriving. In fact, IoT Analytics, a leading provider of market insights for the Internet of Things (IoT), M2M, and Industry 4.0, billion in 2020.

IoT

IoT Healthcare Digital transformation Technology

Dynamic analysis of firmware components in IoT devices

SecureList

JULY 6, 2022

Among the various offensive security techniques, vulnerability assessment takes priority when it comes to analyzing the security of IoT/IIoT devices. The vulnerability assessment of IoT/IIoT devices is based on analyzing their firmware.

Firmware

Firmware IoT Architecture Manufacturing

TheMoon bot infected 40,000 devices in January and February

Security Affairs

MARCH 26, 2024

A new variant of TheMoon malware infected thousands of outdated small office and home office (SOHO) routers and IoT devices worldwide. The Black Lotus Labs team at Lumen Technologies uncovered an updated version of “ TheMoon ” bot targeting end-of-life (EoL) small home/small office (SOHO) routers and IoT devices.

IoT

IoT Cybercrime Internet Internet

P2P Weakness Exposes Millions of IoT Devices

MY TAKE: Why DDoS weapons will proliferate with the expansion of IoT and the coming of 5G

Trending Sources

IoT Unravelled Part 2: IP Addresses, Network, Zigbee, Custom Firmware and Soldering

IoT Cybersecurity Bill Proposed to Congress

5 IoT Security Predictions for 2019

MY TAKE: Why consumers are destined to play a big role in securing the Internet of Things

Last Watchdog’s IoT and ‘zero trust’ coverage win MVP awards from Information Management Today

US House Passes IoT Cybersecurity Improvement Act

Britain introduces IOT Device Security Legislation

The IoT Cybersecurity Act of 2020: Implications for Devices

Attacks Escalating Against Linux-Based IoT Devices

Mozi Botnet is responsible for most of the IoT Traffic

The Internet of Things Is Everywhere. Are You Secure?

Top IoT Security Solutions of 2021

New Ttint IoT botnet exploits two zero-days in Tenda routers

Lousy IoT Security

Bot list with Telnet credentials for more than 500,000 servers and IoT devices leaked online

Microsoft Patch Tuesday updates for February 2019 fixes IE Zero-Day

OT attacks increased by over 2000 percent in 2019, IBM reports

New Shodan Monitor service allows tracking Internet-Exposed devices

The Growing Presence (and Security Risks) of IoT

Chinese Authorities Arrest Hackers Behind Mozi IoT Botnet Attacks

IoT devices at major Manufacturers infected with crypto-miner

Exclusive: MalwareMustDie analyzes a new IoT malware dubbed Linux/ AirDropBot

Q&A: Why emerging IoT platforms require the same leading-edge security as industrial controls

Flaws in mobile Internet protocol GTP allow hackers to target 5G users

BotenaGo botnet targets millions of IoT devices using 33 exploits

China-linked APT group Salt Typhoon compromised some U.S. internet service providers (ISPs)

ARES ADB IOT Botnet targets Android Set Top Boxes (STB) and TVs

Silex malware bricks thousands of IoT devices in a few hours

Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways

Dark Nexus, a new IoT botnet that targets a broad range of devices

Million of Telestar Digital GmbH IoT radio devices can be remotely hacked

Millions of IoT Devices exposed to remote hacks due to iLnkP2P flaws

GUEST ESSAY: Securely managing access controls is vital to preserving the privacy of healthcare data

Cybersecurity for IoT: The Road We’ve Traveled, The Road Ahead

Critical Success Factors to Widespread Deployment of IoT

Administrator of RSOCKS Proxy Botnet Pleads Guilty

New Mirai botnet targets tens of flaws in popular IoT devices

Russia-linked STRONTIUM APT targets IoT devices to hack corporate networks

Why Healthcare IoT Requires Strong Machine Identity Management

Top IoT predictions for 2021

Dynamic analysis of firmware components in IoT devices

TheMoon bot infected 40,000 devices in January and February

Stay Connected