New Reaper IoT Botnet Leaves 378 Million IoT Devices Potentially Vulnerable to Hacking
In the wake of Reaper, the latest IoT botnet, Paul Lipman, CEO of award winning consumer cybersecurity company, BullGuard, has urged the security industry and device manufacturers to address the growing threat from unprotected smart devices.
The call follows the discovery of the latest Internet of Things (IoT) botnet threat, known alternatively as Reaper or IoT Troop that has already enveloped smart devices on more than a million networks worldwide. Reaper uses actual software hacking techniques to break into devices – evolving beyond the October 2016 Mirai IoT botnet, which exploited weak or default passwords on impacted IP cameras and internet routers, and took down major websites across the U.S. including Twitter, Netflix and the New York Times. Reaper’s potential for major Distributed Denial of Service (DDOS) attacks that rapidly take down online services is enormous, and makes last year’s Mirai IoT botnet look like child’s play.
“Reaper is a landmark evolution for hacked smart devices. Unlike Mirai it doesn’t rely on exploiting devices with simple default credentials, rather it exploits numerous vulnerabilities in different IoT devices. It uses sophisticated techniques to hack routers and various smart devices,” said Paul Lipman, CEO at BullGuard. “The industry must wake up and address this issue. Taking down websites may seem relatively innocuous, but Reaper has the potential to cause massive amounts of damage including crashing important online services. How long before we see organisations held to ransom or critical national infrastructure brought to a halt? These are very real and plausible scenarios, yet those responsible for security seem to have gone to sleep.”
BullGuard protects consumer’s smart homes with Dojo by BullGuard, a consumer cybersecurity product built from the ground-up as an enterprise-class network security service, and delivered in a way that is incredibly easy for consumers to use. Dojo utilizes unprecedented multi-layered cybersecurity protection including: Automatic Device Discovery and Categorization, Smart Firewall, Smart IPDS (Intrusion Prevention and Detection System), Secure Web Proxy and Network Behavior Anomaly Detection. Dojo’s device and application aware cybersecurity service automatically adjusts the security envelope by constantly monitoring device behaviors.
378 Million Devices Potentially Vulnerable to Hacking in 2017.
The scale of poor IoT device security was recently revealed by an analysis of BullGuard’s IoT Scanner, a tool that scans home networks searching for vulnerabilities. Approximately 310,000 users accessed the BullGuard IoT Scanner to scan their network for vulnerabilities. The scan analysis revealed that 4.5 per cent, or nearly 14,000 devices, could be easily hacked. Industry analysts at Garner forecast that 8.4 billion connected things will be in use worldwide in 2017, and will reach 20.4 billion by 2020. Extrapolating BullGuard’s IoT Scanner results means 378 million devices are potentially vulnerable to hacking now, growing to more than 900 million potentially susceptible devices by 2020.
According to a recent consumer study conducted by BullGuard, 66 per cent of Americans and 55 per cent of Brits stated the number one thing that would prevent them from buying more IoT connected devices are security concerns. “The widespread adoption of IoT has brought with it tremendous convenience, but consumers are starting to have high expectations about the responsibility device manufacturers should bear to ensure their connected gadgets are secure from cyberattacks,” added Lipman. “Robust multi-layered protection needs to be adopted at a wider level in society if we don’t want to see globally coordinated IoT cyberattacks that could be potentially calamitous.”
- Artificial Intelligence to help save lives at five new technology centres - November 7, 2018
- UK Hydrographic Office contributes to autonomous navigation study - November 5, 2018
- Up to £50 million to develop world leading AI talent in the UK - November 2, 2018
- High Integrity Software Conference reaches out to budding developers in its fifth year - October 16, 2018
- IR35: APSCo urges HMT to delay roll-out - October 12, 2018
- CIOs Struggle to Understand Legacy Architecture, Reduce Software Maintenance and Fix Costs - October 10, 2018
- Doing Our Bit to Reduce Demand on Single Use Plastics - October 3, 2018
- The Furious Engineer revealed as kit sponsors of North Hykeham Junior RFC - October 1, 2018
- Worms in space: The Molecular Muscle Experiment - September 12, 2018
- New Report Details Most Universities Too Slow to Respond to Cyber Threats - September 11, 2018