Hajime the IoT worm that's supposedly trying to block rival botnets, including the famous and mighty Mirai, has reportedly compromised some 300,000 devices already. The data shows the impressive magnitude of this worm that was apparently built by a vigilante white hat.
The rapidly spreading IoT worm fights against the likes of Mirai for control of the products, closing off some ports that are normally exploited by it. While this is great news, it's still a worrying fact that such a worm is spreading so fast because the code allows the creator to change its purpose quite easily. This means the hacker has the ability to go from white hat to black hat.Read more
The Leet Botnet may have wrested the 2016 crown as most powerful distributed denial of service attack from Mirai with a 650 Gigabit per second attack launched early last week.
Researchers at Imperva Security wrote that a DDoS incident rivaled what was thought to be the largest such attack this year when KrebsonSecurity was struck in September with an attack that ranged between 620 and 665 Gbps. However, the two attacks, along with the massive Mirai botnet attack this fall, are much different than Leet. The attacks were picked up on the Imperva Incapsula network as the malicious actors apparently tried to strike several Imperva customers.Read more
Thousands of TalkTalk and Post Office customers have had their internet access cut by an attack targeting certain types of internet routers. A spokeswoman for the Post Office told that the problem began on Sunday and had affected about 100,000 of its customers.
TalkTalk also confirmed that some of its customers had been affected, and it was working on a fix. It is not yet known who is responsible for the attack. Earlier in the week, Germany's Deutsche Telekom revealed that up to 900,000 of its customers had lost their internet connection as a result of the attack. It involves the use of a modified form of the Mirai worm.Read more
Hundreds of thousands of Deutsche Telekom customers in Germany were hit on Sunday by network outages and a company executive blamed the disruptions on a failed hacking attempt to hijack consumer router devices for a wider internet attack.
Deutsche Telekom said as many as 900,000, or about 4.5 percent of its 20 million fixed-line customers, suffered internet outages starting on Sunday and continuing into Monday, when the number of affected users began to decline sharply. Deutsche Telekom's head of IT Security told that the outages appeared to be tied to a botched attempt to turn a sizeable number of customers' routers into a part of the Mirai botnet.Read more
Sierra Wireless is warning customers to change their default access credentials on AirLink gateway products after discovering the wireless products are being compromised by Mirai malware.
Mirai, a malware and botnet combination recently publicized after a 620 Gbps distributed DDoS attack on the prominent security blog Krebs on Security, enslaves thousands of vulnerable Internet of Things devices. Now, it seems the malware's operators could be scanning the web for Sierra Wireless gateway devices vulnerable to exploit. Experts issued a security advisory warning that these products are vulnerable to the Linux-based malware.Read more
A new trojan named Mirai has surfaced, and it's targeting Linux servers and IoT devices, mainly DVRs, running Linux-based firmware, for the purpose of enslaving these systems as part of a large botnet used to launch DDoS attacks. Mirai is an evolution of an older trojan, also used for DDoS attacks.
Mirai's mode of operation is largely the same as Gafgyt, targeting IoT devices running Busybox, a slimmed-down version of select GNU tools and libraries, usually deployed on small embedded hardware. The trojan also targets only a specific set of platforms, on which IoT devices are usually built.Read more