IoT and Malware - Cyber Security Informer

Using EM Waves to Detect Malware

Schneier on Security

JANUARY 14, 2022

Researchers have developed a malware detection system that uses EM waves: “ Obfuscation Revealed: Leveraging Electromagnetic Signals for Obfuscated Malware Classification.” ” Abstract : The Internet of Things (IoT) is constituted of devices that are exponentially growing in number and in complexity.

Malware

Malware IoT Firmware Internet

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Krebs on Security

SEPTEMBER 10, 2021

The assault came from “ Meris ,” the same new “Internet of Things” (IoT) botnet behind record-shattering attacks against Russian search giant Yandex this week and internet infrastructure firm Cloudflare earlier this summer. Cloudflare recently wrote about its attack , which clocked in at 17.2

IoT

IoT DDOS Internet Internet

GreyNoise: AI’s Central Role in Detecting Security Flaws in IoT Devices

Security Boulevard

NOVEMBER 1, 2024

GreyNoise Intelligence researchers said proprietary internal AI-based tools allowed them to detect and identify two vulnerabilities in IoT live-stream cameras that traditional cybersecurity technologies would not have been able to discover.

IoT

IoT Technology Cybersecurity Threat Detection

Zxyel Flaw Powers New Mirai IoT Botnet Strain

Krebs on Security

MARCH 20, 2020

This week, security researchers said they spotted that same vulnerability being exploited by a new variant of Mirai , a malware strain that targets vulnerable Internet of Things (IoT) devices for use in large-scale attacks and as proxies for other cybercrime activity.

IoT

IoT DDOS VPN Firewall

New Linux Cryptomining Malware

Schneier on Security

SEPTEMBER 12, 2022

It’s pretty nasty : The malware was dubbed “ Shikitega ” for its extensive use of the popular Shikata Ga Nai polymorphic encoder, which allows the malware to “mutate” its code to avoid detection. Bottom line: Shikitega is a nasty piece of code. Another article. Slashdot thread.

Malware

Malware Backups IoT Software

P2P Weakness Exposes Millions of IoT Devices

Krebs on Security

APRIL 26, 2019

iLnkP2p is bundled with millions of Internet of Things (IoT) devices, including security cameras and Webcams, baby monitors, smart doorbells, and digital video recorders. He found that 39 percent of the vulnerable IoT things were in China; another 19 percent are located in Europe; seven percent of them are in use in the United States.

IoT

IoT Firewall Manufacturing Computers and Electronics

Your IoT devices may be vulnerable to malware

Tech Republic Security

SEPTEMBER 22, 2021

NordPass: Only 33% of users surveyed had changed the default passwords on their IoT devices, leaving the rest vulnerable to attack.

IoT

IoT Malware Passwords

Why your IoT devices may be vulnerable to malware

Tech Republic Security

SEPTEMBER 8, 2021

Only 33% of users surveyed by NordPass changed the default passwords on their IoT devices, leaving the rest susceptible to attack.

IoT

IoT Malware Passwords

35 Million Devices Vulnerable: Matrix DDoS Campaign Highlights Growing IoT Threat

Penetration Testing

NOVEMBER 27, 2024

This operation, detected through honeypot activities, showcases a concerning... The post 35 Million Devices Vulnerable: Matrix DDoS Campaign Highlights Growing IoT Threat appeared first on Cybersecurity News.

DDOS

DDOS IoT Cybersecurity Malware

MY TAKE: Why companies and consumers must collaborate to stop the plundering of IoT systems

The Last Watchdog

NOVEMBER 9, 2020

The Internet of Things (IoT) has come a long, long way since precocious students at Carnegie Melon University installed micro-switches inside of a Coca-Cola vending machine so they could remotely check on the temperature and availability of their favorite beverages. Related: Companies sustain damage from IoT attacks That was back in 1982.

IoT

IoT Healthcare Internet Internet

⚡ Weekly Recap: Zero-Day Exploits, Developer Malware, IoT Botnets, and AI-Powered Scams

The Hacker News

MAY 12, 2025

Instead of chasing high-value targets directly, threat actors are now quietly taking over the overlooked: outdated software, unpatched IoT devices, and open-source packages. Theyve all become launchpads for attacksbecause cybercriminals are rethinking what counts as infrastructure. It's not just cleverits

IoT

IoT Scams Malware Software

MikroTik botnet relies on DNS misconfiguration to spread malware

Security Affairs

JANUARY 16, 2025

Researchers discovered a 13,000-device MikroTik botnet exploiting DNS flaws to spoof 20,000 domains and deliver malware. Infoblox researchers discovered a botnet of 13,000 MikroTik devices that exploits DNS misconfigurations to bypass email protections, spoof approximately 20,000 domains, and deliver malware.

DNS

DNS Malware Firmware Authentication

SK Telecom revealed that malware breach began in 2022

Security Affairs

MAY 20, 2025

The company offers cellular service, along with 5G development, AI services, IoT solutions, cloud computing, and smart city infrastructure. In April, SK Telecom reported that threat actors gained access to USIM-related information for customers following a malware attack. SKT was instructed to notify all 25.64

Malware

Malware Mobile Data breaches Wireless

IoT is a gold mine for hackers using fileless malware for cyberattacks

Tech Republic Security

FEBRUARY 6, 2020

Data exposure is one of the biggest threats from attacks on IoT devices. A new report recommends a shift to perimeter-less security strategies.

IoT

IoT Malware

New Sophisticated Malware

Schneier on Security

MAY 4, 2022

There are many keys to its stealth, including: The use of a unique backdoor Mandiant calls Quietexit, which runs on load balancers, wireless access point controllers, and other types of IoT devices that don’t support antivirus or endpoint detection. This makes detection through traditional means difficult.

Malware

Malware IoT Wireless Antivirus

Akira ransomware gang used an unsecured webcam to bypass EDR

Security Affairs

MARCH 8, 2025

They found unsecured IoT devices, including webcams and a fingerprint scanner, using them to bypass security defenses and successfully deploy the ransomware. The IoT device was running a lightweight Linux OS, that was the perfect target for Akiras Linux ransomware variant. ” reads the report published by the S-RM team.

Ransomware

Ransomware IoT Encryption Passwords

Researchers used electromagnetic signals to classify malware infecting IoT devices

Security Affairs

JANUARY 5, 2022

Cybersecurity researchers demonstrate how to use electromagnetic field emanations from IoT devices to detect malware. The researchers proposed a novel approach of using side channel information to identify malware targeting IoT systems. Therefore, with EM emanation it becomes possible to detect stealthy malware (e.g.

IoT

IoT Malware Internet Internet

Detecting Evasive Malware on IoT Devices Using Electromagnetic Emanations

The Hacker News

JANUARY 3, 2022

Cybersecurity researchers have proposed a novel approach that leverages electromagnetic field emanations from the Internet of Things (IoT) devices as a side-channel to glean precise knowledge about the different kinds of malware targeting the embedded systems, even in scenarios where obfuscation techniques have been applied to hinder analysis.

IoT

IoT Malware Internet Internet

New Eleven11bot botnet infected +86K IoT devices

Security Affairs

MARCH 5, 2025

The Eleven11bot botnet has infected over 86,000 IoT devices, mainly security cameras and network video recorders (NVRs). Researchers from Nokia Deepfield Emergency Response Team (ERT) discovered a new botnet named Eleven11bot that has already infected over 86,000 IoT devices. ” states GreyNoise. discovered on 2025-03-02.

IoT

IoT DDOS Passwords Hacking

Shadowy IoT Army: Decades-Old Proxy Botnet Exposed and Crippled

Penetration Testing

MAY 12, 2025

Department of Justice and the Dutch National Police, The post Shadowy IoT Army: Decades-Old Proxy Botnet Exposed and Crippled appeared first on Daily CyberSecurity. Lumen Technologies Black Lotus Labs, in collaboration with the U.S.

IoT

IoT Technology Cybersecurity Cybercrime

Zscaler Report: Mobile, IoT, and OT Cyber Threats Surge in 2024

Tech Republic Security

OCTOBER 16, 2024

Zscaler ThreatLabz report reveals a 2024 surge in mobile, IoT, and OT cyberattacks, highlighting key trends and the need for zero trust security.

IoT

IoT Mobile Cyber threats Internet

XorBot Botnet Resurfaces with Advanced Evasion and Exploits, Threatens IoT Devices

Penetration Testing

NOVEMBER 27, 2024

NSFOCUS has identified a resurgence of the XorBot botnet, a potent threat to Internet of Things (IoT) devices worldwide.

IoT

IoT Internet Internet Cybersecurity

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

For the past seven years, a malware-based proxy service known as “ Faceless ” has sold anonymity to countless cybercriminals. The proxy lookup page inside the malware-based anonymity service Faceless. Recently, Faceless has shown ambitions beyond just selling access to poorly-secured IoT devices. Image: spur.us.

Malware

Malware Passwords Accountability Advertising

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Sundaresan Bindu Sundaresan , Cybersecurity Director, LevelBlue In 2025, cybercriminals will exploit supply chain vulnerabilities, ransomware, IoT botnets, and AI-driven phishing. Rising IoT use demands standards to prevent device weaponization, while AI-enabled phishing challenges defenses.

Cyber threats

Cyber threats CISO IoT Phishing

Attacks Escalating Against Linux-Based IoT Devices

eSecurity Planet

JANUARY 20, 2022

Incidents of malware targeting Linux-based Internet of Things (IoT) devices jumped by more than a third in 2021, with three malware families the primary drivers behind the increase. Threats to Open Source, IoT. Also read: Top IoT Security Solutions for 2022. A Fast-Growing Attack Surface.

IoT

IoT DDOS Malware Internet

New IoT RapperBot Malware Targeting Linux Servers via SSH Brute-Forcing Attack

The Hacker News

AUGUST 6, 2022

A new IoT botnet malware dubbed RapperBot has been observed rapidly evolving its capabilities since it was first discovered in mid-June 2022.

IoT

IoT Malware

Overview of IoT threats in 2023

SecureList

SEPTEMBER 21, 2023

IoT devices (routers, cameras, NAS boxes, and smart home components) multiply every year. The first-ever large-scale malware attacks on IoT devices were recorded back in 2008, and their number has only been growing ever since. Telnet, the overwhelmingly popular unencrypted IoT text protocol, is the main target of brute-forcing.

IoT

IoT DDOS Passwords Malware

Malware is down, but IoT and ransomware attacks are up

Tech Republic Security

JULY 23, 2020

Malicious attacks disguised as Microsoft Office files increased 176%, according to SonicWall's midyear threat report.

IoT

IoT Threat Reports Malware Ransomware

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 26

Security Affairs

DECEMBER 29, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Now You See Me, Now You Dont: Using LLMs to Obfuscate Malicious JavaScript Analyzing Malicious Intent in Python Code: A Case Study DigiEver Fix That IoT Thing!

Malware

Malware IoT Hacking

The future of IoT ransomware – targeted multi-function bots and more cyberattacks

Security Boulevard

JUNE 19, 2022

A new IoT malware was detected in October 2021 with as many as 30 exploit mechanisms that were coded into it. This malware called BotenaGo was able to seek out and attack vulnerable targets by itself without having to rely on any human intervention. Once it infects a device, it creates two backdoor ports viz., […].

IoT

IoT Ransomware Malware

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 35

Security Affairs

MARCH 2, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware

Malware Architecture IoT Ransomware

Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms

The Hacker News

DECEMBER 13, 2024

Iran-affiliated threat actors have been linked to a new custom malware that's geared toward IoT and operational technology (OT) environments in Israel and the United States.

IoT

IoT Malware Technology Cybersecurity

Surge in Malicious IoT Botnet Activity Raises Cybersecurity Concerns

SecureWorld News

JUNE 13, 2023

In a digital landscape increasingly dependent on interconnected devices, the rise in malicious Internet of Things (IoT) botnet activity is becoming a significant cause for concern. One of the primary concerns highlighted in the report is the prevalence of bot malware that scans for vulnerable devices.

IoT

IoT Cybersecurity DDOS Malware

IoT Botnet Linked to Large-scale DDoS Attacks Since the End of 2024

Trend Micro

JANUARY 16, 2025

Since the end of 2024, we have been continuously monitoring large-scale DDoS attacks orchestrated by an IoT botnet exploiting vulnerable IoT devices such as wireless routers and IP cameras.

IoT

IoT DDOS Wireless Cyber threats

Matrix Botnet Exploits IoT Devices in Widespread DDoS Botnet Campaign

The Hacker News

NOVEMBER 26, 2024

A threat actor named Matrix has been linked to a widespread distributed denial-of-service (DoD) campaign that leverages vulnerabilities and misconfigurations in Internet of Things (IoT) devices to co-opt them into a disruptive botnet.

IoT

IoT DDOS Internet Internet

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

Security Affairs

DECEMBER 17, 2024

The FBI warned of a fresh wave of HiatusRAT malware attacks targeting internet-facing Chinese-branded web cameras and DVRs. The Federal Bureau of Investigation (FBI) released a Private Industry Notification (PIN) to warn of HiatusRAT malware campaigns targeting Chinese-branded web cameras and DVRs. ” reads the PIN report.

Architecture

Architecture Internet Internet Malware

Experts warn of China-linked APT’s Raptor Train IoT Botnet

Security Affairs

SEPTEMBER 18, 2024

Researchers warn of a new IoT botnet called Raptor Train that already compromised over 200,000 devices worldwide. Cybersecurity researchers from Lumen’s Black Lotus Labs discovered a new botnet, named Raptor Train, composed of small office/home office (SOHO) and IoT devices. “This botnet has targeted entities in the U.S.

IoT

IoT Wireless DDOS Architecture

Security Affairs Malware Newsletter – Round 4

Security Affairs

JULY 28, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter)

Malware

Malware IoT Ransomware Accountability

BotenaGo botnet targets millions of IoT devices using 33 exploits

Security Affairs

NOVEMBER 11, 2021

Researchers at AT&T discovered a new BotenaGo botnet that is using thirty three exploits to target millions of routers and IoT devices. BotenaGo is a new botnet discovered by researchers at AT&T that leverages thirty three exploits to target millions of routers and IoT devices. ” reads the analysis published by AT&T.

IoT

IoT Firmware Malware Wireless

Massive increase in XorDDoS Linux malware in last six months

Malwarebytes

MAY 25, 2022

Based on a case study in 2015 , Akamai strengthened the theory that the malware may be of Asian origin based on its targets. Microsoft said that XorDDoS continues to home on Linux-based systems, demonstrating a significant pivot in malware targets. Security IoT devices. XorDDoS is as sophisticated as it gets. .”

Malware

Malware IoT DDOS DNS

Weekly Update 248

Troy Hunt

JUNE 19, 2021

If you like this sort of content then I'll try and be a bit more organised next time, give some notice and make more of an event out of it.

IoT

IoT Government Malware

AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services

The Hacker News

NOVEMBER 8, 2024

The threat actors behind the AndroxGh0st malware are now exploiting a broader set of security flaws impacting various internet-facing applications, while also deploying the Mozi botnet malware.

Malware

Malware IoT Internet Internet

Linux malware sees 35% growth during 2021

Bleeping Computer

JANUARY 15, 2022

The number of malware infections on Linux-based IoT (internet of things) devices rose by 35% in 2021 compared to the previous year's numbers. The principal goal was recruiting devices to be part of DDoS (distributed denial of service) attacks. [.].

Malware

Malware DDOS IoT Internet

New P2PInfect bot targets routers and IoT devices

Security Affairs

DECEMBER 4, 2023

Cybersecurity researchers discovered a new variant of the P2PInfect botnet that targets routers and IoT devices. Researchers at Cado Security Labs discovered a new variant of the P2Pinfect botnet that targets routers, IoT devices, and other embedded devices. ” reads the report published by Cado Security.

IoT

IoT Architecture Malware Hacking

Using EM Waves to Detect Malware

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Trending Sources

GreyNoise: AI’s Central Role in Detecting Security Flaws in IoT Devices

Zxyel Flaw Powers New Mirai IoT Botnet Strain

New Linux Cryptomining Malware

P2P Weakness Exposes Millions of IoT Devices

Your IoT devices may be vulnerable to malware

Why your IoT devices may be vulnerable to malware

35 Million Devices Vulnerable: Matrix DDoS Campaign Highlights Growing IoT Threat

MY TAKE: Why companies and consumers must collaborate to stop the plundering of IoT systems

⚡ Weekly Recap: Zero-Day Exploits, Developer Malware, IoT Botnets, and AI-Powered Scams

MikroTik botnet relies on DNS misconfiguration to spread malware

SK Telecom revealed that malware breach began in 2022

IoT is a gold mine for hackers using fileless malware for cyberattacks

New Sophisticated Malware

Akira ransomware gang used an unsecured webcam to bypass EDR

Researchers used electromagnetic signals to classify malware infecting IoT devices

Detecting Evasive Malware on IoT Devices Using Electromagnetic Emanations

New Eleven11bot botnet infected +86K IoT devices

Shadowy IoT Army: Decades-Old Proxy Botnet Exposed and Crippled

Zscaler Report: Mobile, IoT, and OT Cyber Threats Surge in 2024

XorBot Botnet Resurfaces with Advanced Evasion and Exploits, Threatens IoT Devices

Giving a Face to the Malware Proxy Service ‘Faceless’

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Attacks Escalating Against Linux-Based IoT Devices

New IoT RapperBot Malware Targeting Linux Servers via SSH Brute-Forcing Attack

Overview of IoT threats in 2023

Malware is down, but IoT and ransomware attacks are up

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 26

The future of IoT ransomware – targeted multi-function bots and more cyberattacks

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 35

Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms

Surge in Malicious IoT Botnet Activity Raises Cybersecurity Concerns

IoT Botnet Linked to Large-scale DDoS Attacks Since the End of 2024

Matrix Botnet Exploits IoT Devices in Widespread DDoS Botnet Campaign

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

Experts warn of China-linked APT’s Raptor Train IoT Botnet

Security Affairs Malware Newsletter – Round 4

BotenaGo botnet targets millions of IoT devices using 33 exploits

Massive increase in XorDDoS Linux malware in last six months

Weekly Update 248

AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services

Linux malware sees 35% growth during 2021

New P2PInfect bot targets routers and IoT devices

Stay Connected