Tuesday, October 11, 2016

Internet of Things proven to disrupt the Internet - PLEASE change your default password/passphrase

Recently a security researcher had his blog attacked.
The attack called a Denial of Service (DOS) was the largest traffic generator in the history of the Internet.
The researcher used a very large scale Internet Service Provider (ISP). Typical DOS attacks use BOTs (think robots) comprised of many (hundreds) of compromised machines on the Internet that do their normal function, but check with a command and control network periodically to perform nefarious functions like attack a domain or IP address with as much traffic as each bot can provide.
Usually these bots are built up over time and are leased or rented out to attack someone/something.

 What was different about this botnet? It was made from millions of Internet of Things (IoT) items like security cameras, Digital Video Recorders, printers, routers, and other devices. The devices used had default passwords and/or default configurations.

 If you’ve not changed the default password or default configuration on any of your IoT devices, you could have participated in this attack.
 The attack may target a critical infrastructure service instead the next time.

 Check your IoT devices and use strong passphrases. Check default configurations of IoT devices. Use a strong rule set on home routers and firewalls.
 Monitor traffic and behavior of your network.
Re check IoT devices periodically and after any upgrades.
Periodically reboot IoT devices to clear any BOT from running memory.

======= Summary There are enough devices on the internet with default passwords/passphrases to take down the Internet.
If you have not yet changed the default (from factory) password on your DVR, video streaming devices, home thermostat, garage door openers, etc. Please do so.

No comments:

Post a Comment