IoT and Malware - Cyber Security Informer

Using EM Waves to Detect Malware

Schneier on Security

JANUARY 14, 2022

Researchers have developed a malware detection system that uses EM waves: “ Obfuscation Revealed: Leveraging Electromagnetic Signals for Obfuscated Malware Classification.” ” Abstract : The Internet of Things (IoT) is constituted of devices that are exponentially growing in number and in complexity.

Malware

Malware IoT Firmware Internet

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Krebs on Security

SEPTEMBER 10, 2021

The assault came from “ Meris ,” the same new “Internet of Things” (IoT) botnet behind record-shattering attacks against Russian search giant Yandex this week and internet infrastructure firm Cloudflare earlier this summer. Cloudflare recently wrote about its attack , which clocked in at 17.2

IoT

IoT DDOS Internet Internet

New PumaBot targets Linux IoT surveillance devices

Security Affairs

MAY 28, 2025

PumaBot targets Linux IoT devices, using SSH brute-force attacks to steal credentials, spread malware, and mine crypto. Darktrace researchers discovered a new botnet called PumaBot targets Linux-based IoT devices, using SSH brute-force attacks to steal credentials, spread malware, and mine cryptocurrency.

Surveillance

Surveillance IoT Malware Manufacturing

GreyNoise: AI’s Central Role in Detecting Security Flaws in IoT Devices

Security Boulevard

NOVEMBER 1, 2024

GreyNoise Intelligence researchers said proprietary internal AI-based tools allowed them to detect and identify two vulnerabilities in IoT live-stream cameras that traditional cybersecurity technologies would not have been able to discover.

IoT

IoT Technology Cybersecurity Threat Detection

New PumaBot Botnet Targets Linux IoT Devices to Steal SSH Credentials and Mine Crypto

The Hacker News

MAY 28, 2025

Embedded Linux-based Internet of Things (IoT) devices have become the target of a new botnet dubbed PumaBot. Written in Go, the botnet is designed to conduct brute-force attacks against SSH instances to expand in size and scale and deliver additional malware to the infected hosts.

IoT

IoT Internet Internet Malware

PumaBot: New Stealthy Linux Botnet Evades Detection, Targets IoT Devices

Penetration Testing

MAY 31, 2025

Cybersecurity researchers at Darktrace have exposed a stealthy and persistent Linux-based botnet dubbed PumaBot, which leverages Go binaries, The post PumaBot: New Stealthy Linux Botnet Evades Detection, Targets IoT Devices appeared first on Daily CyberSecurity.

IoT

IoT Cybersecurity Cyber Attacks Malware

Zxyel Flaw Powers New Mirai IoT Botnet Strain

Krebs on Security

MARCH 20, 2020

This week, security researchers said they spotted that same vulnerability being exploited by a new variant of Mirai , a malware strain that targets vulnerable Internet of Things (IoT) devices for use in large-scale attacks and as proxies for other cybercrime activity.

IoT

IoT DDOS VPN Firewall

SK Telecom revealed that malware breach began in 2022

Security Affairs

MAY 20, 2025

The company offers cellular service, along with 5G development, AI services, IoT solutions, cloud computing, and smart city infrastructure. In April, SK Telecom reported that threat actors gained access to USIM-related information for customers following a malware attack. SKT was instructed to notify all 25.64

Malware

Malware Mobile Data breaches Wireless

⚡ Weekly Recap: Zero-Day Exploits, Developer Malware, IoT Botnets, and AI-Powered Scams

The Hacker News

MAY 12, 2025

Instead of chasing high-value targets directly, threat actors are now quietly taking over the overlooked: outdated software, unpatched IoT devices, and open-source packages. Theyve all become launchpads for attacksbecause cybercriminals are rethinking what counts as infrastructure. It's not just cleverits

IoT

IoT Scams Malware Software

P2P Weakness Exposes Millions of IoT Devices

Krebs on Security

APRIL 26, 2019

iLnkP2p is bundled with millions of Internet of Things (IoT) devices, including security cameras and Webcams, baby monitors, smart doorbells, and digital video recorders. He found that 39 percent of the vulnerable IoT things were in China; another 19 percent are located in Europe; seven percent of them are in use in the United States.

IoT

IoT Firewall Manufacturing Computers and Electronics

New Linux Cryptomining Malware

Schneier on Security

SEPTEMBER 12, 2022

It’s pretty nasty : The malware was dubbed “ Shikitega ” for its extensive use of the popular Shikata Ga Nai polymorphic encoder, which allows the malware to “mutate” its code to avoid detection. Bottom line: Shikitega is a nasty piece of code. Another article. Slashdot thread.

Malware

Malware Backups IoT Software

Your IoT devices may be vulnerable to malware

Tech Republic Security

SEPTEMBER 22, 2021

NordPass: Only 33% of users surveyed had changed the default passwords on their IoT devices, leaving the rest vulnerable to attack.

IoT

IoT Malware Passwords

35 Million Devices Vulnerable: Matrix DDoS Campaign Highlights Growing IoT Threat

Penetration Testing

NOVEMBER 27, 2024

This operation, detected through honeypot activities, showcases a concerning... The post 35 Million Devices Vulnerable: Matrix DDoS Campaign Highlights Growing IoT Threat appeared first on Cybersecurity News.

DDOS

DDOS IoT Cybersecurity Malware

Why your IoT devices may be vulnerable to malware

Tech Republic Security

SEPTEMBER 8, 2021

Only 33% of users surveyed by NordPass changed the default passwords on their IoT devices, leaving the rest susceptible to attack.

IoT

IoT Malware Passwords

MY TAKE: Why companies and consumers must collaborate to stop the plundering of IoT systems

The Last Watchdog

NOVEMBER 9, 2020

The Internet of Things (IoT) has come a long, long way since precocious students at Carnegie Melon University installed micro-switches inside of a Coca-Cola vending machine so they could remotely check on the temperature and availability of their favorite beverages. Related: Companies sustain damage from IoT attacks That was back in 1982.

IoT

IoT Healthcare Internet Internet

MikroTik botnet relies on DNS misconfiguration to spread malware

Security Affairs

JANUARY 16, 2025

Researchers discovered a 13,000-device MikroTik botnet exploiting DNS flaws to spoof 20,000 domains and deliver malware. Infoblox researchers discovered a botnet of 13,000 MikroTik devices that exploits DNS misconfigurations to bypass email protections, spoof approximately 20,000 domains, and deliver malware.

DNS

DNS Malware Firmware Authentication

IoT is a gold mine for hackers using fileless malware for cyberattacks

Tech Republic Security

FEBRUARY 6, 2020

Data exposure is one of the biggest threats from attacks on IoT devices. A new report recommends a shift to perimeter-less security strategies.

IoT

IoT Malware

Akira ransomware gang used an unsecured webcam to bypass EDR

Security Affairs

MARCH 8, 2025

They found unsecured IoT devices, including webcams and a fingerprint scanner, using them to bypass security defenses and successfully deploy the ransomware. The IoT device was running a lightweight Linux OS, that was the perfect target for Akiras Linux ransomware variant. ” reads the report published by the S-RM team.

Ransomware

Ransomware IoT Encryption Passwords

New Eleven11bot botnet infected +86K IoT devices

Security Affairs

MARCH 5, 2025

The Eleven11bot botnet has infected over 86,000 IoT devices, mainly security cameras and network video recorders (NVRs). Researchers from Nokia Deepfield Emergency Response Team (ERT) discovered a new botnet named Eleven11bot that has already infected over 86,000 IoT devices. ” states GreyNoise. discovered on 2025-03-02.

IoT

IoT DDOS Passwords Hacking

New Sophisticated Malware

Schneier on Security

MAY 4, 2022

There are many keys to its stealth, including: The use of a unique backdoor Mandiant calls Quietexit, which runs on load balancers, wireless access point controllers, and other types of IoT devices that don’t support antivirus or endpoint detection. This makes detection through traditional means difficult.

Malware

Malware IoT Wireless Antivirus

KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS

Krebs on Security

MAY 20, 2025

The brief attack appears to have been a test run for a massive new Internet of Things (IoT) botnet capable of launching crippling digital assaults that few web destinations can withstand. Read on for more about the botnet, the attack, and the apparent creator of this global menace. For reference, the 6.3 Image: Cloudflare.

DDOS

DDOS IoT Internet Internet

Researchers used electromagnetic signals to classify malware infecting IoT devices

Security Affairs

JANUARY 5, 2022

Cybersecurity researchers demonstrate how to use electromagnetic field emanations from IoT devices to detect malware. The researchers proposed a novel approach of using side channel information to identify malware targeting IoT systems. Therefore, with EM emanation it becomes possible to detect stealthy malware (e.g.

IoT

IoT Malware Internet Internet

Shadowy IoT Army: Decades-Old Proxy Botnet Exposed and Crippled

Penetration Testing

MAY 12, 2025

Department of Justice and the Dutch National Police, The post Shadowy IoT Army: Decades-Old Proxy Botnet Exposed and Crippled appeared first on Daily CyberSecurity. Lumen Technologies Black Lotus Labs, in collaboration with the U.S.

IoT

IoT Technology Cybersecurity Cybercrime

Detecting Evasive Malware on IoT Devices Using Electromagnetic Emanations

The Hacker News

JANUARY 3, 2022

Cybersecurity researchers have proposed a novel approach that leverages electromagnetic field emanations from the Internet of Things (IoT) devices as a side-channel to glean precise knowledge about the different kinds of malware targeting the embedded systems, even in scenarios where obfuscation techniques have been applied to hinder analysis.

IoT

IoT Malware Internet Internet

XorBot Botnet Resurfaces with Advanced Evasion and Exploits, Threatens IoT Devices

Penetration Testing

NOVEMBER 27, 2024

NSFOCUS has identified a resurgence of the XorBot botnet, a potent threat to Internet of Things (IoT) devices worldwide.

IoT

IoT Internet Internet Cybersecurity

Zscaler Report: Mobile, IoT, and OT Cyber Threats Surge in 2024

Tech Republic Security

OCTOBER 16, 2024

Zscaler ThreatLabz report reveals a 2024 surge in mobile, IoT, and OT cyberattacks, highlighting key trends and the need for zero trust security.

IoT

IoT Mobile Cyber threats Internet

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 26

Security Affairs

DECEMBER 29, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Now You See Me, Now You Dont: Using LLMs to Obfuscate Malicious JavaScript Analyzing Malicious Intent in Python Code: A Case Study DigiEver Fix That IoT Thing!

Malware

Malware IoT Hacking

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

For the past seven years, a malware-based proxy service known as “ Faceless ” has sold anonymity to countless cybercriminals. The proxy lookup page inside the malware-based anonymity service Faceless. Recently, Faceless has shown ambitions beyond just selling access to poorly-secured IoT devices. Image: spur.us.

Malware

Malware Passwords Accountability Advertising

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 35

Security Affairs

MARCH 2, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware

Malware Architecture IoT Ransomware

New IoT RapperBot Malware Targeting Linux Servers via SSH Brute-Forcing Attack

The Hacker News

AUGUST 6, 2022

A new IoT botnet malware dubbed RapperBot has been observed rapidly evolving its capabilities since it was first discovered in mid-June 2022.

IoT

IoT Malware

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Sundaresan Bindu Sundaresan , Cybersecurity Director, LevelBlue In 2025, cybercriminals will exploit supply chain vulnerabilities, ransomware, IoT botnets, and AI-driven phishing. Rising IoT use demands standards to prevent device weaponization, while AI-enabled phishing challenges defenses.

Cyber threats

Cyber threats CISO IoT Phishing

Attacks Escalating Against Linux-Based IoT Devices

eSecurity Planet

JANUARY 20, 2022

Incidents of malware targeting Linux-based Internet of Things (IoT) devices jumped by more than a third in 2021, with three malware families the primary drivers behind the increase. Threats to Open Source, IoT. Also read: Top IoT Security Solutions for 2022. A Fast-Growing Attack Surface.

IoT

IoT DDOS Malware Internet

Overview of IoT threats in 2023

SecureList

SEPTEMBER 21, 2023

IoT devices (routers, cameras, NAS boxes, and smart home components) multiply every year. The first-ever large-scale malware attacks on IoT devices were recorded back in 2008, and their number has only been growing ever since. Telnet, the overwhelmingly popular unencrypted IoT text protocol, is the main target of brute-forcing.

IoT

IoT DDOS Passwords Malware

Malware is down, but IoT and ransomware attacks are up

Tech Republic Security

JULY 23, 2020

Malicious attacks disguised as Microsoft Office files increased 176%, according to SonicWall's midyear threat report.

IoT

IoT Threat Reports Malware Ransomware

The future of IoT ransomware – targeted multi-function bots and more cyberattacks

Security Boulevard

JUNE 19, 2022

A new IoT malware was detected in October 2021 with as many as 30 exploit mechanisms that were coded into it. This malware called BotenaGo was able to seek out and attack vulnerable targets by itself without having to rely on any human intervention. Once it infects a device, it creates two backdoor ports viz., […].

IoT

IoT Ransomware Malware

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

Security Affairs

DECEMBER 17, 2024

The FBI warned of a fresh wave of HiatusRAT malware attacks targeting internet-facing Chinese-branded web cameras and DVRs. The Federal Bureau of Investigation (FBI) released a Private Industry Notification (PIN) to warn of HiatusRAT malware campaigns targeting Chinese-branded web cameras and DVRs. ” reads the PIN report.

Architecture

Architecture Internet Internet Malware

Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms

The Hacker News

DECEMBER 13, 2024

Iran-affiliated threat actors have been linked to a new custom malware that's geared toward IoT and operational technology (OT) environments in Israel and the United States.

IoT

IoT Malware Technology Cybersecurity

Surge in Malicious IoT Botnet Activity Raises Cybersecurity Concerns

SecureWorld News

JUNE 13, 2023

In a digital landscape increasingly dependent on interconnected devices, the rise in malicious Internet of Things (IoT) botnet activity is becoming a significant cause for concern. One of the primary concerns highlighted in the report is the prevalence of bot malware that scans for vulnerable devices.

IoT

IoT Cybersecurity DDOS Malware

Matrix Botnet Exploits IoT Devices in Widespread DDoS Botnet Campaign

The Hacker News

NOVEMBER 26, 2024

A threat actor named Matrix has been linked to a widespread distributed denial-of-service (DoD) campaign that leverages vulnerabilities and misconfigurations in Internet of Things (IoT) devices to co-opt them into a disruptive botnet.

IoT

IoT DDOS Internet Internet

Experts warn of China-linked APT’s Raptor Train IoT Botnet

Security Affairs

SEPTEMBER 18, 2024

Researchers warn of a new IoT botnet called Raptor Train that already compromised over 200,000 devices worldwide. Cybersecurity researchers from Lumen’s Black Lotus Labs discovered a new botnet, named Raptor Train, composed of small office/home office (SOHO) and IoT devices. “This botnet has targeted entities in the U.S.

IoT

IoT Wireless DDOS Architecture

Security Affairs Malware Newsletter – Round 4

Security Affairs

JULY 28, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter)

Malware

Malware IoT Ransomware Accountability

IoT Botnet Linked to Large-scale DDoS Attacks Since the End of 2024

Trend Micro

JANUARY 16, 2025

Since the end of 2024, we have been continuously monitoring large-scale DDoS attacks orchestrated by an IoT botnet exploiting vulnerable IoT devices such as wireless routers and IP cameras.

IoT

IoT DDOS Wireless Cyber threats

New P2PInfect bot targets routers and IoT devices

Security Affairs

DECEMBER 4, 2023

Cybersecurity researchers discovered a new variant of the P2PInfect botnet that targets routers and IoT devices. Researchers at Cado Security Labs discovered a new variant of the P2Pinfect botnet that targets routers, IoT devices, and other embedded devices. ” reads the report published by Cado Security.

IoT

IoT Architecture Malware Hacking

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 12

Security Affairs

SEPTEMBER 22, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware

Malware IoT Healthcare Cryptocurrency

Using EM Waves to Detect Malware

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Trending Sources

New PumaBot targets Linux IoT surveillance devices

GreyNoise: AI’s Central Role in Detecting Security Flaws in IoT Devices

New PumaBot Botnet Targets Linux IoT Devices to Steal SSH Credentials and Mine Crypto

PumaBot: New Stealthy Linux Botnet Evades Detection, Targets IoT Devices

Zxyel Flaw Powers New Mirai IoT Botnet Strain

SK Telecom revealed that malware breach began in 2022

⚡ Weekly Recap: Zero-Day Exploits, Developer Malware, IoT Botnets, and AI-Powered Scams

P2P Weakness Exposes Millions of IoT Devices

New Linux Cryptomining Malware

Your IoT devices may be vulnerable to malware

35 Million Devices Vulnerable: Matrix DDoS Campaign Highlights Growing IoT Threat

Why your IoT devices may be vulnerable to malware

MY TAKE: Why companies and consumers must collaborate to stop the plundering of IoT systems

MikroTik botnet relies on DNS misconfiguration to spread malware

IoT is a gold mine for hackers using fileless malware for cyberattacks

Akira ransomware gang used an unsecured webcam to bypass EDR

New Eleven11bot botnet infected +86K IoT devices

New Sophisticated Malware

KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS

Researchers used electromagnetic signals to classify malware infecting IoT devices

Shadowy IoT Army: Decades-Old Proxy Botnet Exposed and Crippled

Detecting Evasive Malware on IoT Devices Using Electromagnetic Emanations

XorBot Botnet Resurfaces with Advanced Evasion and Exploits, Threatens IoT Devices

Zscaler Report: Mobile, IoT, and OT Cyber Threats Surge in 2024

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 26

Giving a Face to the Malware Proxy Service ‘Faceless’

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 35

New IoT RapperBot Malware Targeting Linux Servers via SSH Brute-Forcing Attack

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Attacks Escalating Against Linux-Based IoT Devices

Overview of IoT threats in 2023

Malware is down, but IoT and ransomware attacks are up

The future of IoT ransomware – targeted multi-function bots and more cyberattacks

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms

Surge in Malicious IoT Botnet Activity Raises Cybersecurity Concerns

Matrix Botnet Exploits IoT Devices in Widespread DDoS Botnet Campaign

Experts warn of China-linked APT’s Raptor Train IoT Botnet

Security Affairs Malware Newsletter – Round 4

IoT Botnet Linked to Large-scale DDoS Attacks Since the End of 2024

New P2PInfect bot targets routers and IoT devices

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 12

Stay Connected