IoT Attacks Up Significantly in First Half of 2019IoT Attacks Up Significantly in First Half of 2019
New research shows attacks increased ninefold year-over-year, coming from more than a quarter-million unique IP addresses.
October 16, 2019
Malicious actors aren't tiring of the Internet of Things (IoT), with cyberattacks on network-connected smart devices and process controllers rapidly increasing in number. One network of honeypots, put in place by Kaspersky, saw 105 million attacks on IoT devices coming from 276,000 unique IP addresses in the first six months of 2019, compared with just 12 million attacks in the first half of 2018.
Kaspersky's honeypot network found that while most IoT attacks are not very sophisticated, they sure are "quiet," showing little evidence of successful infection until the victim is activated as part of a botnet. Mirai and its variants remain the most common attack payload, accounting for 39% of the infections. The methods used to infect IoT devices vary, ranging from brute-forcing device passwords — often through Nyadrop, which was seen in 38.57% of attacks — to exploits of unpatched vulnerabilities found in a wide variety of different devices.
Kaspersky's honeypot network also determined the geographical source of the attacks, with China responsible for 30%, Brazil for 19%, and Egypt for 12%. That pattern marks a change from 2018, when Brazil was the leading attack source, responsible for 28% of the attacks seen in the first half of the year.
Read more here.
This free, all-day online conference offers a look at the latest tools, strategies, and best practices for protecting your organization’s most sensitive data. Click for more information and, to register, here.
About the Author(s)
Tricks to Boost Your Threat Hunting GameNov 06, 2023
Hacking Your Digital Identity: How Cybercriminals Can and Will Get Around Your Authentication MethodsOct 26, 2023
Modern Supply Chain Security: Integrated, Interconnected, and Context-DrivenNov 06, 2023
How to Combat the Latest Cloud Security ThreatsNov 06, 2023
Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and PhishingNov 01, 2023
9 Traits You Need to Succeed as a Cybersecurity Leader
The Ultimate Guide to the CISSP
Protecting Critical Infrastructure: The 2021 Energy, Utilities, and Industrials Cyber Threat Landscape Report
2021 Banking and Financial Services Industry Cyber Threat Landscape Report
5 Reasons To Move your PKI Deployment to the Cloud