Forget Mirai – Brickerbot malware will kill your crap IoT devices

Found on The Register on Saturday, 08 April 2017

On March 20 researchers at security shop Radware spotted the malware, dubbed Brickerbot, cropping up in honeypots it sets up across the web to lure interesting samples.

Once inside the operating system, the code starts to scramble the onboard memory using rm -rf /* and disabling TCP timestamps, as well as limiting the max number of kernel threads to one.

Brickerbot then flushes all iptables firewall and NAT rules and adds a rule to drop all outgoing packets. Finally it tries to wipe all code on the affected devices and render them useless – a permanent denial of service.

Amongst all the malware, this one does not sound too bad since it effectively cleans up and removes those IoT devices which are abused by others to cause havoc. Maybe this will help and force the industry to create more secure hardware.

Browse all articles« Previous « » Next »