sb-nz logo
Story image

Mirai botnet now targeting Windows PCs to access IoT devices

15 Feb 2017

Notorious IoT malware ‘Mirai’ has now jumped ship to infect Windows devices and Symantec is warning users to make sure they have internet security to make sure they don’t get caught.

Symantec says the malware used to infect Linux systems, as they are what many IoT devices use. However, security researchers found a version that can now infect Windows computers and spread to IoT devices on the network.

“The Windows version of Mirai will attempt to connect to those devices through potentially open ports. These ports could simply be other Windows machines or they may be connected devices. Upon connecting successfully and determining that the platform is Linux based, it will turn that particular device into a DDoS bot in the Mirai botnet,” Symantec said in a blog.

The sheer breadth of Windows usage (more than one billion PCs are running all Windows versions) means that Mirai is able to spread its malware more widely.

In October 2016, the Mirai malware originally turned IoT devices into botnets and struck everything from DVRs, security cameras and more. 

The malware accessed devices using default usernames and passwords, and then took control to turn the botnet devices into weapons that conducted a Distributed Denial of Service (DDoS) attack. The attack brought down one of the largest global hosting companies, and its clients, for hours.

Symantec says the IoT trend will keep rising, and now any connected device, whether it’s a toaster or Bluetooth door lock, is now its own computer subject to its own security issues.

The company suggests that users must protect their Windows computers. 

Story image
Malware and email scams targeting employees spread rapidly in Q2
"Businesses must stay alert and should employ defense-in-depth tactics and equip themselves with multilayered security mechanisms, including high-sensor spam filters and a VPN connection, which would prevent malicious pages from opening."More
Story image
Report: 151% increase in DDoS attacks compared to 2019
It comes as the security risk profile for organisations around the world increased in large part thanks to the COVID-19 pandemic, forcing greater reliance on cloud technology and thrusting digital laggards into quick and unsecured migrations.More
Story image
SecOps opens new Cyber Defence Operations Centre in Auckland
Privacy Commissioner John Edwards officially opened the centre this week, recognising SecOps’ efforts to provide managed security services to New Zealand businesses.More
Link image
Data is an organisation's most significant asset - here's how to protect it
Data resilience strategies are becoming more crucial as more value is ascribed to a company's data. If it's not stored securely and cost-effectively, expect problems.More
Story image
Why it’s essential to re-write IT security for the cloud era
Key components of network security architecture for the cloud era should be built from the ground up, as opposed to being bolted on to legacy solutions built for organisations functioning only on-premises or from only managed devices.More
Story image
Video: 10 Minute IT Jams - The benefits of converged cloud security
Today, Techday speaks to Forcepoint senior sales engineer and solutions architect Matthew Bant, who discusses the benefits of a converged cloud security model, and the pandemic's role in complicating the security stack in organisations around the world.More