The evolution of Mirai could spell trouble for Windows business and home users

The infamous Mirai malware is now capable of targeting Windows systems, according to researchers at an antivirus firm. The original version of the malware was discovered in August 2016 and was used by cybercriminals to create botnets of infected Internet of Things (IoT) devices.

These botnets conducted distributed denial of service (DDoS) attacks against some rather large targets, says Richard Meeus, VP Technology at NSFOCUS IB, including internet infrastructure giant, DYN. In the latest development of Mirai, researchers at Dr. Web have shown that a Windows Trojan (Trojan.Mirai.1) is capable of targeting Windows systems, scanning them for evidence of connected devices running Linux, and laterally infecting those devices with the Mirai malware.

Richard Meeus
Richard Meeus

The use of Windows to distribute Mirai means that it has now established a foothold into private networks. Previously, IoT devices that were not connected directly to the Internet were not thought to be as heavily at risk as those that were. However, with the trojan’s ability to jump that gap, and due to the fact that Windows is ever-present in many homes and businesses, Mirai now has a new vehicle to infect even more devices.

Home users and businesses alike need to practice good security on any devices they bring into their home or office. Just because an IoT device doesn’t have a keyboard, doesn’t mean it is any less susceptible to hacks.

Whether it is a robot reading stories to children, a webcam designed to monitor your pets, or web enabled TVs in boardrooms, if they have connectivity to the Internet, they can be attacked.

Image-3People need to understand that as soon as they install a new device that is Wi-Fi enabled, they need to change the default password of that device. Mirai relies on a large table of IoT devices with known factory settings, including default passwords, so this is a simple and easy fix.

With the new variant targeting Windows, ensuring antivirus software is up-to-date is a must. Businesses should ensure their firewalls and edge security devices have the latest intelligence that includes signatures for the latest Mirai Malware.

malware2The Mirai strain of malware looks poised to become the ‘new normal’ for 2017. As such, home and business users alike must take proper precautions to ensure their devices are not participating in crippling DDoS attacks against others.

If residential and commercial users do not protect themselves from Mirai, they could see their IP address listed as “malicious” on threat intelligence feeds. Once your IP address(es) find their way onto these lists, it’s very difficult to get them removed.

The author of this blog is Richard Meeus, VP Technology at NSFOCUS IB

Comment on this article below or via Twitter: @IoTNow_ OR @jcIoTnow


9 IoT applications that will change everything

Posted on: September 1, 2021

Whether you are a future-minded CEO, tech-driven CEO or IT leader, you’ve come across the term IoT before. It’s often used alongside superlatives regarding how it will revolutionize the way you work, play, and live. But is it just another buzzword, or is it the as-promised technological holy grail? The truth is that Internet of

Read more

Which IoT Platform 2021? IoT Now Enterprise Buyers’ Guide

Posted on: August 30, 2021

There are several different parts in a complete IoT solution, all of which must work together to get the result needed, write IoT Now Enterprise Buyers’ Guide – Which IoT Platform 2021? authors Robin Duke-Woolley, the CEO and Bill Ingle, a senior analyst, at Beecham Research. Figure 1 shows these parts and, although not all

Read more

CAT-M1 vs NB-IoT – examining the real differences

Posted on: June 21, 2021

As industry players look to provide the next generation of IoT connectivity, two different standards have emerged under release 13 of 3GPP – CAT-M1 and NB-IoT.

Read more

IoT and home automation: What does the future hold?

Posted on: June 10, 2020

Once a dream, iot home automation is slowly but steadily becoming a part of daily lives around the world. In fact, it is believed that the global market for smart home automation will reach $40 billion by 2020.

Read more

OCF celebrates pulse systems’ installation of newly certified IoT platform for smart lighting

Posted on: December 6, 2021

The Open Connectivity Foundation (OCF) has announced the first installation of the recently-certified low power IoT platform, from OCF member Cascoda, that combines the end-to-end security benefits of OCF and the low power, wide-area coverage advantages of Thread.

Read more

Green Custard Ltd develop robust predictive maintenance system for Martin Engineering Ltd

Posted on: December 6, 2021

Green Custard Ltd, a professional services company and AWS Advanced Consulting partner, together with Eseye Ltd (also an AWS partner) has been selected by Martin Engineering Ltd to build a global predictive maintenance and monitoring platform on AWS so their localised US platform can be rolled out internationally.

Read more