Stories
Slash Boxes
Comments

SoylentNews is people

Attackers Use Decade-Old SSH Flaw to Target IoT Devices

posted by martyb on Friday October 14 2016, @06:22AM   Printer-friendly
from the fast-forwarding? dept.

ticho writes:

Millions of IoT devices have already been compromised and abused for distributed denial-of-service (DDoS) attacks and millions more are affected by critical vulnerabilities that make them an easy target for malicious actors.

While in many cases attackers hack IoT devices and leverage them to conduct attacks directly, researchers at Akamai have come across a different type of mass attack in which the compromised systems are used as proxies that route malicious traffic.

These attacks, dubbed by Akamai SSHowDowN Proxy attacks, have abused vulnerable CCTV, NVR, DVR, networking, storage and satellite antenna equipment to conduct HTTP-based credential stuffing campaigns. The breached devices are also used as an entry point to the internal networks that house them.

Read more at SecurityWeek.com

Original Submission

 
This discussion has been archived. No new comments can be posted.
Attackers Use Decade-Old SSH Flaw to Target IoT Devices | Log In/Create an Account | Top | 23 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 0) by Anonymous Coward on Friday October 14 2016, @07:00AM

    by Anonymous Coward on Friday October 14 2016, @07:00AM (#414183)

    that is to say that LoT devices implement any sort of security at all

  • (Score: 0) by Anonymous Coward on Friday October 14 2016, @07:57AM

    by Anonymous Coward on Friday October 14 2016, @07:57AM (#414193)

    Even if they do. Eventually companies no longer care about those devices. No fixes will be coming, ever.