• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • January 22nd, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Hacking News
Leaks

IoT Devices at Risk After Mirai Code Leaked that Exploits Default Credentials

October 4th, 2016 Waqas Security, Leaks 0 comments
IoT Devices at Risk After Mirai Code Leaked that Exploits Default Credentials
Share on FacebookShare on Twitter
The source code of Linux.Mirai DDoS botnet has been leaked online — Here are 63 default IoT passwords exposed in the leaked code.

The IoT Botnet Mirai’s source code has been published online by its author along with configuration and set-up details. Naturally, web security analysts are expecting a series of online attacks from malicious threat actors. The reason behind their concerns is that this code can easily convert any hackable, that is, unsecured or unprotected devices like the routers, web cameras and phone, etc., into DDoS Bots. These bots can then be used to attack websites and to take them offline.

Mirai’s code is suspected to be responsible for the attack on Brian Krebs’s KrebsOnSecurity website since Krebs informed public about the publishing of the Mirai code. Krebs warned people about the high probability of the Internet of Things devices getting exploited and hacked in days to come. The code can be used to bombard the websites handling the IoT devices remotely with so many requests that the sites would eventually shut down, rendering the IoT devices vulnerable to exploitation. DDoS attacks play a phenomenally important role in this process.

DDoS (distributed denial of service) attacks have become so common nowadays in the west that the US and UK have become the first and second most targeted countries respectively. DDoS attacks entail flooding the website or a machine with so many requests for information that the device or site becomes unable to function. This makes internet-connected devices enslaved to attackers because these then act according to the commands sent through the botnet or a C&C server. This is how hackers strengthen their ability to conduct successful attacks. In fact, recently we have seen huge attacks, some over 665 gigabits of data per second. This kind of humongous traffic can easily take down any website within a short span of time.

[q]Internet of Things are turning into Botnet of things[/q]

In this regard, the most important aspect that often gets overlooked is that these IoT devices come with default usernames and passwords, which often becomes an issue while dealing with vulnerabilities. Since these internet connected devices have default credentials that are usually either too easy to guess or too difficult to change so people just choose to let them be. This is a grave mistake as the presence of default credentials would make the job of a botnet much easier.

For instance, the following usernames and passwords can help Mirai botnet, which has been extracted from the published source code:

iot-devices-at-risk-after-publishing-of-mirai-code-that-exploits-default-credentials

List of 63 default passwords leaked with Mirai code / Source: Github

Related: Troubling State of Security Cameras; Thousands of Devices Vulnerable

[fullsquaread][/fullsquaread]

Firstly, Mirai searches for telnet and then using the credentials we mentioned above to brute force the access to the IoT device such as a DVR, router, camera or the internet-connected hardware. At least two servers are required by the Mirai botnet but the author of the code states that two VPS accounts worked just as fine. Furthermore, it has been observed that around 400,000 devices are connected to Mirai and after the attack on Brian Krebs’ website, the number came down to nearly 300,000.

  • Tags
  • Botnet
  • Cyber Crime
  • DDOS
  • hacking
  • internet
  • IoT
  • security
Facebook Twitter LinkedIn Pinterest
Previous article Remember 68 Million Hacked Dropbox Data? It's available for free download
Next article Yahoo built a software to secretly scan user emails for the NSA
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
Shazam Vulnerability exposed location of Android, iOS users

Shazam Vulnerability exposed location of Android, iOS users

Ongoing 'FreakOut' malware attack turns Linux devices into IRC botnet

Ongoing 'FreakOut' malware attack turns Linux devices into IRC botnet

Signal, Google Duo, FB Messenger vulnerabilities allowed eavesdropping

Signal, Google Duo, FB Messenger vulnerabilities allowed eavesdropping

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
Shazam Vulnerability exposed location of Android, iOS users
Security

Shazam Vulnerability exposed location of Android, iOS users

33
Ongoing 'FreakOut' malware attack turns Linux devices into IRC botnet
Security

Ongoing 'FreakOut' malware attack turns Linux devices into IRC botnet

76
Signal, Google Duo, FB Messenger vulnerabilities allowed eavesdropping
Security

Signal, Google Duo, FB Messenger vulnerabilities allowed eavesdropping

103

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us