Connect with us

Technology

Internet of Things (IoT): Kaspersky detects more than 100 million attacks on smart devices in H1 2019

Published

on

Dan Demeter – Kaspersky (Image: Kaspersky)

This figure is around nine times more than the number found in H1 2018, when only around 12 million attacks were spotted originating from 69,000 IP addresses

LAGOS, Nigeria, October 16, 2019- Kaspersky honeypots networks of virtual copies of various internet connected devices and applications have detected 105 million attacks on IoT devices coming from 276,000 unique IP addresses in the first six months of the year. This figure is around nine times more than the number found in H1 2018, when only around 12 million attacks were spotted originating from 69,000 IP addresses. Capitalising on weak security of IoT products, cybercriminals are intensifying their attempts to create and monetise IoT botnets. This and other findings are a part of the ‘IoT: a malware story’ report on honeypot activity in H1 2019.

Cyberattacks on IoT devices are booming, as even though more and more people and organisations are purchasing ‘smart’ (network-connected and interactive) devices, such as routers or DVR security cameras, not everybody considers them worth protecting. Cybercriminals, however, are seeing more and more financial opportunities in exploiting such gadgets. They use networks of infected smart devices to conduct DDoS attacks or as a proxy for other types of malicious actions. To learn more about how such attacks work and how to prevent them, Kaspersky experts set up honeypots – decoy devices used to attract the attention of cybercriminals and analyse their activities.

Based on data analysis collected from honeypots, attacks on IoT devices are usually not sophisticated, but stealth-like, as users might not even notice their devices are being exploited. The malware family behind 39% of attacks – Mirai – is capable of using exploits, meaning that these botnets can slip through old, unpatched vulnerabilities to the device and control it. Another technique is password brute-forcing, which is the chosen method of the second most widespread malware family in the list – Nyadrop. Nyadrop was seen in 38.57% of attacks and often serves as a Mirai downloader. This family has been trending as one of the most active threats for a couple of years now. The third most common botnet threatening smart devices – Gafgyt with 2.12% – also uses brute-forcing.

Also Read Lillian Barnard: Tech Enthusiast And First Female Managing Director, Microsoft South Africa

In addition, the researchers were able to locate the regions that became sources of infection most often in H1 2019. These are China, with 30% of all attacks taking place in this country, Brazil saw 19% and this is followed by Egypt (12%). A year ago, in H1 2018 the situation was different, with Brazil leading with 28%, China being second with 14% and Japan following with 11%.

“As people become more and more surrounded by smart devices, we are witnessing how IoT attacks are intensifying. Judging by the enlarged number of attacks and criminals’ persistency, we can say that IoT is a fruitful area for attackers that use even the most primitive methods, like guessing password and login combinations. This is much easier than most people think: the most common combinations by far are usually “support/support”, followed by “admin/admin”, “default/default”. It’s quite easy to change the default password, so we urge everyone to take this simple step towards securing your smart devices” – said Dan Demeter, security researcher at Kaspersky.

To keep your devices safe, Kaspersky recommends users:

  • Install updates for the firmware you use as soon as possible. Once a vulnerability is found, it can be fixed through patches within updates.
  • Always change preinstalled passwords. Use complicated passwords that include both capital and lower-case letters, numbers and symbols if it’s possible.
  • Reboot a device as soon as you think it’s acting strangely. It might help get rid of existing malware, but this doesn’t reduce the risk of getting another infection.
  • Keep access to IoT devices restricted by a local VPN, allowing you to access them from your “home” network, instead of publicly exposing them on the internet.

Kaspersky recommends companies to take the following measures:

  • Use threat data feeds to block network connections originating from malicious network addresses detected by security researchers.
  • Make sure all devices software is up to date. Unpatched devices should be kept in a separate network inaccessible by unauthorised users.

Read the full text of the report on Securelist.com (https://bit.ly/32k5v1j).

Kaspersky

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Technology

talabat Achieves Highest Level of PCI-DSS Certification for Transactional Security Across all Markets

Published

on

talabat Chief Technical Officer, Khaled Rashad (Image: Supplied)

talabat, the region’s leading food delivery and q-commerce platform is proud to announce their achievement of a Level 1 Certification in the Payment Card Industry Data Security Standard (PCI-DSS). A set of security standards formed in 2004 that aim to safely secure online credit and debit card transactions against data theft and fraud.

Today, talabat has the PCI-DSS Level 1 Certification in all of its eight operational markets. Which include: Kuwait, UAE, Bahrain, Oman, Qatar, Jordan, Egypt and Iraq. Making it the first food and q-commerce delivery platform to have achieved this in the region.

Commenting on the announcement, Khaled Rashad, Chief Technical Officer at talabat said: “The PCI-DSS Level 1 Certification marks a great milestone for us. As we are proud to be the first and only food and q-commerce delivery platform in the MENA region to have achieved this certification.”

“At talabat, we are constantly working to protect customers’ transactions on the platform. And this certification further reiterates this commitment ensuring that customers will continue to feel confident in using the talabat platform. Which has the highest security standards in the industry.” Rashad adds.

PCI-DSS is the global industry compliance and security standard that is dedicated to securing cardholders’ data. Being one of the most stringent security standards in the market. It applies to any organization involved in the processing, transmission, and storage of credit card information.

talabat maintains partnerships with several trusted, PCI-DSS compliant payment service providers. Which is where transactional data is transferred each time a customer makes an order payment. And is heavily protected by the compliant payment service providers.

 

Download BAO E-MAGAZINE

Continue Reading

Technology

Fawry broadens its platform for consumer finance offerings to capture the growing opportunity

Published

on

Fawry CFO, AbdelMeguid Afifi (Image: Suplied)

Fawry (the “Company”, FWRY.CA on the Egyptian Exchange), Egypt’s leading e-payments solutions and banking services provider. Today announced plans for establishing a consumer finance company, Fawry Consumer Finance. Broadening its existing offering of financial solutions as a service currently offered through partner banks and financial service providers.

This aims to expand the targeted consumer categories providing more options at check out. And cementing Fawry’s position as a platform for financial services that empowers consumers with a broad range of payment choices. The move also comes in line with the government vision & FRA strategy to support financial inclusion & digital transformation.

The company will offer its customers convenient access to credit through multiple products including Buy Now Pay Later “BNPL”. This comes in line with the company’s strategy to add more financial services across its channels and expand its direct-to-consumer offering. As always with Fawry, the move is aimed to unlock opportunity on both the consumer and merchant side leveraging its dual sided network. Through providing BNPL at checkout Fawry enables its merchants to grow sales and enhances its acceptance offering.

In that regard, AbdelMeguid Afifi, CFO of Fawry, said, “We know consumers are looking for frictionless experiences at check out and flexibility in payment offerings. In the last couple of years we’ve seen huge growth of buy-now-pay- later transactions. We also believe that providing value added services at checkout for the merchant will be key to growing our acceptance business and deepening the utilization of our POS network.”

“The offering combines the two, allowing Fawry to meet real needs of consumers to gain access to credit. And empowering merchants to offer their customers multiple options to pay on their own terms,” Afifi added.

Fawry Consumer Finance was established with an initial capital of EGP 10 million, and is fully owned by Fawry and its subsidiaries. It recently received the necessary license from the Financial Regulatory Authority (FRA). And is looking to directly offer its customers consumer finance in 2022.

 

Download BAO E-MAGAZINE

Continue Reading

Technology

4 Essential Points To Consider Before Buying a Power Bank

Published

on

Power bank render (image: belkin), Article: John Neesham

Smartphones have emerged as an indispensable part of our lives. From the instant, we awaken we’re maximum probably to be using our smartphones most of the day. We need to either speak with other human beings or use it as a form of enjoyment through smartphones. You need to buy the best power bank which will help in your bad conditions where no charger can help you.

All these elements cause your battery to run low. Which is one of the fundamental motives why the best power bank exists. in recent times. While deciding to own an electricity financial institution you’ll find out that there are numerous alternatives on the market. How do you choose the right best portable power bank? You should consider the following listed reasons before buying a portable charger. The best power bank is one of the most beneficial devices nowadays.

Whenever you spot your cellphone or your Nintendo transfer about to die, plug it into a power financial institution. And it’ll start charging immediately. That stated, shopping for a strong financial institution isn’t that easy as it appears.  When you have purchased one and aren’t satisfied with it. We consider you could have neglected some crucial elements.

At the same time as buying an energy bank, you ought to don’t forget factors like the brand call, customer support. And the actual capability of the tool, among many different things.

  1. Portability

Whilst the portable charger is actually too big to be installed in your pocket or too heavy to hold around, may you be willing to apply it anymore? If you continually convey the transportable charger with you wherever you cross. You ought to not forget a light energy best portable power bank with a graceful design.

  1. The Capacity of The Power Bank

How frequently might you want to rate your digital devices without charging your electricity financial institution? that could be a query that the capability of the strongest financial institution can tell you. Every other critical question is, for what tool you’ll use your strong financial institution? A pc needs more energy than a phone. A phone can be charged with an electricity financial institution of 3.350 mAh however a pc wishes more electricity.  In need of a laptop energy bank? Use an energy bank with a capacity of 30.000 mAh or better. 

  1. Price and Quality

If you are searching for the best-power financial institution that suits your wishes. You have to look in addition to just the photos. check the specs and determine what specs are crucial for your usage of the strongest financial institution. Occasionally a less expensive model isn’t matching your desires. And the reasonably-priced energy bank may not last as long as you want.

Moreover, another cause to take a good look at the price exceptional ratio is the overload. A few reasonably-priced strength banks can overload and damage your electronic devices. All of our strength banks are tested and meet all ECU safety needs.

  1. Usage of The Power Bank

An energy financial institution may be used for greater than just one cause. A student can use an electricity financial institution inside the bus to school when there is no socket available. A climber can use the best portable power bank to use his smartphone when he needs to send an emergency signal. Or a survival specialist can use an outdoor power bank when a storm is raging over him.

 

Download BAO E-MAGAZINE

Continue Reading

Ads

Most Viewed