Malware attacks on IoT-enabled devices are on the rise: Kaspersky

Cyber attacks on IoT devices are at an all-time high. Cybersecurity researchers have detected 105 million attacks on IoT devices coming from 276,000 unique IP dresses in first six months of year 2019. This figure is around nine times more than number found in same period last year. In 2018, only around 12 million attacks were spotted originating from 69,000 IP dresses. Hackers and b actors are also intensifying ir attempts to create and monetize IoT botnets, courtesy of weak security of IoT products, according to Kaspersky report titled ‘IoT: a malware story.’

Despite more number of organisations and individuals opting for smart, IoT-enabled devices like routers and DVR security cameras, security researchers have pointed out lack of intention for protection of se devices among consumers. At same time, hackers and cybercriminals are seeing more and more financial opportunities in exploiting such ggets, Kaspersky ted ding that hackers use networks of infected smart devices to conduct DDoS attacks or as a proxy for or s of malicious actions.

Cybersecurity experts and researchers set up honeypots - decoy devices used to attract attention of cybercriminals and analyze ir activities. Below are findings of study.

RE | India high on nda of Russian cybersecurity solutions firm Kaspersky

Study findings

-- Attacks on IoT devices are usually t vanced, but hidden, as users might t even tice ir devices are being exploited.

-- 39% of attacks were caused by Mirai malware family, which is capable of using exploits by slipping through old, unpatched vulnerabilities to device and control it.

-- Second most used technique (38.7% of attacks) chosen by ar malware family Nyrop was is password brute-forcing.

-- third most common botnet threatening smart devices - Gafgyt with 2.12% - also uses brute-forcing.

-- 30% of all attacks took place in China, followed by Brazil (19% of attacks) and Egypt (12% of attacks).

“As people become more and more surrounded by smart devices, we are witnessing how IoT attacks are intensifying. Judging by enlarged number of attacks and criminals’ persistency, we can say that IoT is a fruitful area for attackers that use even most primitive methods, like guessing password and login combinations," said Dan Demeter, a security researcher at Kaspersky Lab. It’s quite easy to change default password, so we urge everyone to take this simple step towards securing your smart devices.”

RE | Malware attacks on Internet users increased during April-June 2019