Story image

Mirai botnet now targeting Windows PCs to access IoT devices

15 Feb 17

Notorious IoT malware ‘Mirai’ has now jumped ship to infect Windows devices and Symantec is warning users to make sure they have internet security to make sure they don’t get caught.

Symantec says the malware used to infect Linux systems, as they are what many IoT devices use. However, security researchers found a version that can now infect Windows computers and spread to IoT devices on the network.

“The Windows version of Mirai will attempt to connect to those devices through potentially open ports. These ports could simply be other Windows machines or they may be connected devices. Upon connecting successfully and determining that the platform is Linux based, it will turn that particular device into a DDoS bot in the Mirai botnet,” Symantec said in a blog.

The sheer breadth of Windows usage (more than one billion PCs are running all Windows versions) means that Mirai is able to spread its malware more widely.

In October 2016, the Mirai malware originally turned IoT devices into botnets and struck everything from DVRs, security cameras and more. 

The malware accessed devices using default usernames and passwords, and then took control to turn the botnet devices into weapons that conducted a Distributed Denial of Service (DDoS) attack. The attack brought down one of the largest global hosting companies, and its clients, for hours.

Symantec says the IoT trend will keep rising, and now any connected device, whether it’s a toaster or Bluetooth door lock, is now its own computer subject to its own security issues.

The company suggests that users must protect their Windows computers. 

SonicWall secures hybrid clouds by simplifying firewall deployment
Once new products are brought online in remote locations, administrators can manage local and distributed networks.
What MSPs can learn from Datto’s Channel Ransomware Report
While there have been less high profile attacks making the headlines, the frequency of attacks is, in fact, increasing.
Cisco expands security capabilities of SD­-WAN portfolio
Until now, SD-­WAN solutions have forced IT to choose between application experience or security.
AlgoSec delivers native security management for Azure Firewall
AlgoSec’s new solution will allow a central management capability for Azure Firewall, Microsoft's new cloud-native firewall-as-a-service.
How to configure your firewall for maximum effectiveness
ManageEngine offers some firewall best practices that can help security admins handle the conundrum of speed vs security.
Exclusive: Why botnets will swarm IoT devices
“What if these nodes were able to make autonomous decisions with minimal supervision, use their collective intelligence to solve problems?”
Why you should leverage a next-gen firewall platform
Through full lifecycle-based threat detection and prevention, organisations are able to manage the entire threat lifecycle without adding additional solutions.
The quid pro quo in the IoT age
Consumer consciousness around data privacy, security and stewardship has increased tenfold in recent years, forcing businesses to make customer privacy a business imperative.