I’ve been talking about the Mirai IoT botnet for weeks now. Unfortunately, it’s still up to no good, this time taking an entire country temporarily offline (or at least slowing down traffic enough to affect businesses). Watch today’s video to learn how Mirai DDoSed Liberia, as well as how attackers are using the Mirai botnet leak to create even more IoT botnet malware.
Episode Runtime: 3:44
Direct YouTube Link: https://www.youtube.com/watch?v=Y6QYELQx_X4
EPISODE REFERENCES:
- Mirai IoT botnet knocks a country offline – Forbes
- Mirai botnet killing business in Liberia – PC World
- Researcher’s post on Mirai botnet attacking Liberia – Medium
- Researchers discover new Linux IoT botnet based on Mirai – MalwareMustDie
— Corey Nachreiner, CISSP (@SecAdept)
Jack Waffer says
So why on gods green earth are we still looking at IOT. If this technology is as [expletive deleted] up as all the Microsoft Endpoints in the world, and subjected to attacks before it’s barely out the door…we are [expletive deleted] doomed.
The whole internet is doomed mostly as a result of Microsoft crappy [expletive deleted] endpoint operating systems..that couldn’t stop an child from poking holes in it. HOLY [expletive deleted], when is the world going to wake up?
Corey Nachreiner says
Heh… strong opinions. Actually, I personally think MS software and endpoints have gotten more secure over the past 15 years, since they’ve started the trustworthy computing group. They’ll never be perfect, but Microsoft follow better secure coding practices than many nowadays. However, 20 yrs ago they did have really “low hanging fruit” software problems, and frankly that seems to be where many IoT manufacturers are today. I do think IoT vendors need to take some drastic security steps like MS did 15yrs ago.