Shielded and well prepared, the Spartans stood strong defending their territory in ancient Greece. The modern IT security infrastructure in many organizations is no different than Sparta’s defenders. The tiered security models and robust firewalls make it hard for enemy hackers to penetrate and gain access to networks.
With IT security so strong, cybercriminals are on the lookout for unsuspecting and unprotected targets (vulnerabilities) within networks and are using an alternate approach. Instead of breaking down the fortified perimeters, they now sniff out weak spots.
Why Bother Attacking the Spartans when Minions Might be Sufficient
Internet of Things (IoT) are the equivalent of Minions in today’s connected infrastructure. They are rarely built with cybersecurity in mind and the lack of dedicated tools to safeguard them has left organizations vulnerable to attacks.
Mirai — the infamous malware that recently affected millions of such devices – has been made widely available for hackers to control an army of bots.
Hackers need a large army of network connected devices to launch an effective DDoS attack, and in IoT devices they find the most vulnerable and easy targets. Last Friday, October 21, we witnessed an unprecedented DDoS attack on one of the most sophisticated DNS service providers that brought much of the Internet in the U.S. to its knees. Devices that are often considered insignificant (surveillance cameras and DVRs) were used as bots to launch this massive DDoS attack.
Unfortunately, this is just the beginning. Since the release of Mirai, several variants of it have been identified. Some even trying to fight one another to take control of the devices to increase the botnet’s footprint. It has never been more important to protect and secure the most vulnerable assets on the network.
In the aftermath of last week’s DDoS attack, many organizations are struggling to find and investigate if their IoT devices were hijacked and participated in the attack. ZingBox customers, on the other hand, enjoy the peace of mind knowing that their IoT devices aren’t controlled by a new boss! ZingBox can help you discover if your IoT devices are part of a botnet. Please contact us about getting a free assessment of your network now.
In our next blog, we will discuss how ZingBox IoT Guardian helps detect and mitigate Mirai or a variant, finding the root cause, and assisting customers in keeping their IoT devices secure.
This blog is the 2nd in a series of blogs on DDoS attacks.