Kaspersky Lab: IoT attacks in Q2 2018

Kaspersky Lab: IoT attacks in Q2 2018

Kaspersky Lab has released IoT attack data for the second quarter of 2018.

Brute-forcing Telnet passwords is the most common method of IoT malware self-propagating. However, there has been a recent increase in attacks targeting other services, such as port 8291 and port 7547, to target IoT devices.

This shows that the nature of IoT attacks has become more complex, especially when it comes to vulnerabilities.

Telnet Attack

The attacker finds the victim device, checks if its Telnet port is open, and starts a password brute force cracking routine. Since many IoT device manufacturers neglect security, this attack becomes easier to succeed and can affect entire device lines. The infected device starts scanning new networks and infects new similar devices or workstations within them.

Top 10 countries where IoT devices are most vulnerable to Telnet attacks

In the second quarter, Brazil (23.38%) led in the number of infected IoT devices and therefore also in the number of Telnet attacks, followed by China (17.22%), which rose slightly, and third was Japan (8.64%).

The most common malware in these attacks was Backdoor.Linux.Mirai.c (15.97%).

SSH Attacks

The launch of such attacks is similar to Telnet attacks, the only difference being that they require a robot to have an SSH client installed on it to brute-force the credentials. The SSH protocol is password protected, so brute-forcing the password requires a lot of computing resources. Therefore, self-propagation from IoT devices is inefficient. The success of SSH attacks depends on the fault of the device owner or manufacturer. In other words, these are again the result of weak or preset passwords assigned by the manufacturer to the entire device family. China is the country most likely to be infected via SSH attacks.


<<:  Creating the future with data T11 2018 explores the development of new smart cities

>>:  Will the mobile phone manufacturers’ launch of customized VR glasses be a hit?

Recommend

How to build your own AARRR operating model?

Every time I talk with my peers about operations ...

Microsoft releases Android desktop app

On October 29, according to foreign media reports...

Why are fruits becoming sweeter and sweeter? Is this unhealthy?

Have you noticed that fruits are getting sweeter ...

The inside story of Android creator's farewell to Google

Who is Andy Rubin? He is a great man who named th...

If social networking sites don't focus on video, they will be doomed sooner or later

How has Zha Ge learned the values ​​of socialism ...

Understanding Insulated Bearings

Bearings are important core components in mechani...

Zap&Go power bank comes out and can charge iPhone 5s in five minutes

Nowadays, mobile power banks have become one of t...