Author's Opinion

The views in this column are those of the author and do not necessarily reflect the views of iTWire.

Have your say and comment below.

Friday, 24 August 2018 10:36

New wave of Mirai botnet surfaces, leveraging Linux to target IoT Featured

By

A new wave of the Mirai botnet has been uncovered by Symantec, leveraging an open-source project that makes it more robust and compatible with multiple architectures and devices.

The Mirai botnet first surfaced in 2016, disrupting many of the world’s largest websites. Variants have been growing steadily, helped by an environment of poorly managed IoT devices, Symantec found, as well as by the release of the malware’s source code.

The new variants have been created by leveraging an open source project named Aboriginal Linux, with the effect of making the botnet more robust, and compatible with many diverse architectures and devices that range from routers, IP cameras, and other connected Internet of Things and Android-based devices.

Aboriginal Linux is no longer under active development, but had the goal of being the smallest Linux system capable of rebuilding itself under itself.

Malware must be able to run self-contained on a system, and when Symantec found the new variants they found the writers had exploited Aboriginal Linux’ cross-compilation facilities, making portability effortless. Aboriginal Linux, of course, has no involvement in malware and is an excellent open source project. It has simply been misappropriated by those with malicious intent.

Nevertheless, the end result is that a malicious person can be quite comfortable their botnet will execute and run on any targeted device, irrespective of its architecture.

Symantec has detailed the malware, which they label Linux.Mirai, and offers tips to protect your IoT devices from malware.

  • Research the capabilities and security features of your IoT devices.
  • Perform an audit of IoT devices on your network.
  • Change the default credentials on every device, using strong and unique passwords.
  • Use strong encryption for Wi-Fi.
  • Disable features and services which you do not require, including remote login.
  • Disable Universal Plug and Play (UPnP) on routers unless you absolutely require it.
  • Regularly check for firmware updates. 

Subscribe to ITWIRE UPDATE Newsletter here

GRAND OPENING OF THE ITWIRE SHOP

The much awaited iTWire Shop is now open to our readers.

Visit the iTWire Shop, a leading destination for stylish accessories, gear & gadgets, lifestyle products and everyday portable office essentials, drones, zoom lenses for smartphones, software and online training.

PLUS Big Brands include: Apple, Lenovo, LG, Samsung, Sennheiser and many more.

Products available for any country.

We hope you enjoy and find value in the much anticipated iTWire Shop.

ENTER THE SHOP NOW!

INTRODUCING ITWIRE TV

iTWire TV offers a unique value to the Tech Sector by providing a range of video interviews, news, views and reviews, and also provides the opportunity for vendors to promote your company and your marketing messages.

We work with you to develop the message and conduct the interview or product review in a safe and collaborative way. Unlike other Tech YouTube channels, we create a story around your message and post that on the homepage of ITWire, linking to your message.

In addition, your interview post message can be displayed in up to 7 different post displays on our the iTWire.com site to drive traffic and readers to your video content and downloads. This can be a significant Lead Generation opportunity for your business.

We also provide 3 videos in one recording/sitting if you require so that you have a series of videos to promote to your customers. Your sales team can add your emails to sales collateral and to the footer of their sales and marketing emails.

See the latest in Tech News, Views, Interviews, Reviews, Product Promos and Events. Plus funny videos from our readers and customers.

SEE WHAT'S ON ITWIRE TV NOW!

BACK TO HOME PAGE
David M Williams

David has been computing since 1984 where he instantly gravitated to the family Commodore 64. He completed a Bachelor of Computer Science degree from 1990 to 1992, commencing full-time employment as a systems analyst at the end of that year. David subsequently worked as a UNIX Systems Manager, Asia-Pacific technical specialist for an international software company, Business Analyst, IT Manager, and other roles. David has been the Chief Information Officer for national public companies since 2007, delivering IT knowledge and business acumen, seeking to transform the industries within which he works. David is also involved in the user group community, the Australian Computer Society technical advisory boards, and education.

Share News tips for the iTWire Journalists? Your tip will be anonymous

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments