I recommend that we start using new term I heard at Disobey.fi event: Internet of Exploits (IoE) is to be used to describe the current and future situation of network being filled exploitable Internet of Things (IoT) and other poorly secured networked devices.
We were sold the idea of Internet of Everything (IoE) and what we got is Internet of Exploits (IoE).
153 Comments
Tomi Engdahl says:
New Linux/Rakos threat: devices and servers under SSH scan (again)
http://www.welivesecurity.com/2016/12/20/new-linuxrakos-threat-devices-servers-ssh-scan/
Apparently, frustrated users complain more often recently on various forums about their embedded devices being overloaded with computing and network tasks. What these particular posts have in common is the name of the process causing the problem. It is executed from a temporary directory and disguised as a part of the Java framework, namely “.javaxxx”. Additional names like “.swap” or “kworker” are also used. A few weeks ago, we discussed the recent Mirai incidents and Mirai-connected IoT security problems in The Hive Mind: When IoT devices go rogue and all that was written then still holds true.
The Hive Mind: When IoT devices go rogue
http://www.welivesecurity.com/2016/10/26/hive-mind-iot-devices-go-rogue/
The Internet of Things (IoT) has been referred to by so many different names in the past year: The Internet of Terror, the Internet of Trash and a few other catchy monikers to account for the large amount of vulnerabilities present in new devices that are increasingly present in many homes.
Tomi Engdahl says:
IoDT = Internet of Dangerous Things
Source: https://barrgroup.com/sites/default/files/2017_BarrGroup_Survey_Webinar.pdf
Tomi Engdahl says:
http://www.epanorama.net/newepa/2017/03/29/embedded-systems-safety-security-survey/