AI DevwWrld Chatbot Summit Cyber Revolution Summit CYSEC Global Cyber Security & Cloud Expo World Series Digital Identity & Authentication Summit Middle East Low Code No Code Summit TimeAI Summit

Zero-day network vulnerabilities affect IoT devices

Cybersecurity experts reveal new risks for the Internet of Things

Studio Akamai has discovered two zero-day vulnerabilities in IoT used by criminals to create botnets for DDoS attacks. Security can be improved by changing default passwords.

Contribute to spreading the culture of prevention!
Support our cause with a small donation by helping us raise awareness among users and companies about cyber threats and defense solutions.

This pill is also available in Italian language

Recent studies conducted by cybersecurity experts at Akamai have uncovered highly sophisticated cyberattacks targeting IoT devices, including routers and security cameras. Researchers have identified two serious zero-day vulnerabilities that are already being exploited by attackers to embed these devices within networks of zombie machines, commonly known as botnets.

The persistent threat of Mirai and botnets

Botnets such as Mirai, famous in the field of cybersecurity, serve as platforms for illicit online activities using an infrastructure of compromised devices. These are configured through the spread of malware that exploits vulnerabilities such as those recently discovered and can carry out DDoS attacks or other malicious operations in a distributed and difficult to detect manner.

Attack methods and security guidelines

Unauthorized access to devices occurs through the use of default credentials, which should make it easier to protect against such threats by simply changing them. However, numerous investigations highlight the tendency of users not to replace the passwords set by the manufacturer, thus maintaining an inadequate level of security.

Manufacturers' response and user behavior

In more detail, the reported vulnerabilities mainly concern devices used in the hotel sector by a well-known Japanese brand, mainly powerline models. While corrective patches are being developed, their effectiveness remains dependent on user adoption, who are often reluctant or unaware of the need to regularly update their devices to maintain security.

Follow us on WhatsApp for more pills like this

11/23/2023 17:42

Editorial AI

Last pills

LockBit's tenacious activity despite global investigationsChallenges and countermeasures in the war against the LockBit cyber criminal group

Avast fined for illegitimate sale of web dataFines and restrictions imposed on cybersecurity company for misuse of personal data

KeyTrap: DNSSEC flaw discovered by researchersThe vulnerability puts the stability of DNSSEC at risk

Pact between technology companies against electoral manipulationJoint technology initiative to preserve the integrity of democratic voting