New Variants of Mirai Botnet Detected, Targeting More IoT Devices

New Variants of Mirai Botnet Detected, Targeting More IoT Devices (arstechnica.com) 36

Posted by BeauHD on Tuesday April 09, 2019 @08:50PM from the there's-more-where-that-came-from dept.

An anonymous reader quotes a report from Ars Technica: Mirai, the "botnet" malware that was responsible for a string of massive distributed denial of service (DDoS) attacks in 2016 -- including one against the website of security reporter Brian Krebs -- has gotten a number of recent updates. Now, developers using the widely distributed "open" source code of the original have added a raft of new devices to their potential bot armies by compiling the code for four more microprocessors commonly used in embedded systems.

Researchers at Palo Alto Networks' Unit 42 security research unit have published details of new samples of the Mirai botnet discovered in late February. The new versions of the botnet malware targeted Altera Nios II, OpenRISC, Tensilica Xtensa, and Xilinx MicroBlaze processors. These processors are used on a wide range of embedded systems, including routers, networked sensors, base band radios for cellular communications and digital signal processors. The new variants also include a modified encryption algorithm for botnet communications and a new version of the original Mirai TCP SYN denial-of-service attack. Based on the signature of the new attack option, Unit 42 researchers were able to trace activity of the variants back as far as November 2018.

New Variants of Mirai Botnet Detected, Targeting More IoT Devices

This discussion has been archived. No new comments can be posted.

Load All Comments

Search 36 Comments Log In/Create an Account

Comments Filter:

Remember kids ... (Score:4, Funny)

by dc29A ( 636871 ) * writes: on Tuesday April 09, 2019 @09:33PM (#58413030)

The 'S' in IoT stands for 'Security'.

Oh goody (Score:2)

by JustAnotherOldGuy ( 4145623 ) writes:

Yay, more malware. Just what we need.
MAGA (Score:2)

by raind ( 174356 ) writes:

My attorney got arrested. Doesn't matter when it's backdoored.
- Re: (Score:2)
  
  by arglebargle_xiv ( 2212710 ) writes:
  
  That's a weird set of processors, Nios II and Microblaze are either soft-cores or IP blocks on an FPGA, they aren't really used on consumer equipment. And who uses OpenRISC at all? Did they do this just because they can?
  - Re: (Score:2)
    
    by Zocalo ( 252965 ) writes:
    
    Mirai doesn't really target PCs; it's main focus is embedded systems, especially routers and (obviously) IoT devices in both consumer and industrial spaces, so I guess the authors are mostly trying to expand their attack space. They've already added a whole bunch of additional vendors and device types since the original version, so I guess this is just the next stage down the long tail of being able to attack as much as possible. My understanding is the Mirai code is very modular and fairly easy to add ne

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

New Variants of Mirai Botnet Detected, Targeting More IoT Devices (arstechnica.com) 36

New Variants of Mirai Botnet Detected, Targeting More IoT Devices More Login

New Variants of Mirai Botnet Detected, Targeting More IoT Devices

Remember kids ... (Score:4, Funny)

Oh goody (Score:2)

MAGA (Score:2)

Re: (Score:2)

Re: (Score:2)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot