IoT botnet Linux.ProxyM turns its grubby claws to spam rather than DDoS

[Phantomboxe]

Published: 22 Sept 2017

 

 

An IoT botnet is making a nuisance of itself online after becoming a conduit for spam distribution.

 

Linux.ProxyM has the capability to engage in email spam campaigns with marked difference to other IoT botnets, such as Mirai, that infamously offered a potent platform for running distributed-denial-of-service attacks (DDoSing). Other IoT botnets have been used as proxies to offer online anonymity.

 

Linux.ProxyM never had DDoS capabilities and was built instead to function as a giant mesh of proxy servers running on smart devices. The botnet first surfaced in February 2017, reaching a size of nearly 10,000 bots by June. The botnet has halved in size since then but this positive development is offset by the addition of new features.

 

Dr.Web, the Russian antivirus firm that first identified Linux.ProxyM, warns the botnet is now engaged in email spam campaigns. According to Dr.Web's statistics, a device infected with Linux.ProxyM sends on average about 400 emails per day. Campaigns so far have promoted adult hookup sites.

 

Default login credentials and risible patching practices have created an opportunity for hackers to pwn internet-connected devices ranging from CCTVs cameras, personal video recorders and routers so the abuse of this resource to send junk mail was only a matter of time.

 

Javvad Malik, security advocate at AlienVault, commented: "This isn't a surprising development. If we look at IoT devices, they are basically running a small Linux PC – this can be used to serve whatever purposes the creator desires as long as it is within the device's capabilities. Due to the difficulty in patching IoT devices, using them for malicious purposes will likely continue to rise." ®

 

source

[steven36]

IoT has been a security problem for a longtime now and they still not figured out what too do about it.  What do you expect form devices with a no patching policy ?  how is someone going install DR.web on a IoT device?  (you can't.)

 

This is what people get for using computer devices that they have no control over there security.  Don't buy into  IoT for the sake of convenience and you want have this problem .  We knew about botnets on IoT for along time  but nothing can stop them but shutting down the hackers server  itself .

 

Security software is useless against  IoT botnets telling us about them just confirms what i already know use standard devices instead witch are cheaper anyway that don't connect too the internet and if they do and can be used without it just don't plug them in too the internet .

 

 

I don't never have no trouble with spam and before botnets were used for DDoSing that what most  of them were for is spam  because i hardly give my emails out to no one unless i know them or  disposable ones want work. I think the worse botnets was Conficker witch spread a virus  and Metulji and Mariposa witch stole peoples info . 90% of botnets are used too send people spam in emails.

 

Mirai Botnet started out on IoT and the  malware dev figured out how make it  work on  Windows too so i don't  think it have nothing too with Linux witch is just a kernel . But the difference is you can patch windows and Linux desktop and use security software .   Botnets on OS desktop and server are mostly the Sysadmin's  fault for not patching and checking for them .

 

After Targeting Linux, Mirai Botnet Is Here To Hack Your Windows Devices

https://fossbytes.com/mirai-botnet-windows-version/

So don't think one cant effect you just because you're on Windows.