IT IS A WEDNESDAY, so it will come as no surprise that there's a new Internet of Things (IoT) threat dong the rounds.
Trend Micro has uncovered this latest threat, dubbed Persirai, which has reportedly been infecting Chinese-made wireless cameras for around a month now.
What's more, owners of affected cameras unlikely will know that they have been affected, which the security firm says "makes it significantly easier for the perpetrators behind the malware to gain access to the IP Camera web interface via TCP Port 81."
"IP cameras typically use Universal Plug and Play (UPnP), which are network protocols that allow devices to open a port on the router and act like a server, making them highly visible targets for IoT malware," the researchers explained.
Once a hacker logs into the interface, he or she can then carry out a command injection to force the IP camera to connect to a download site to issue commands that download and execute malicious shell scripts. After the samples are downloaded, the Persirai malware deletes itself and runs only in memory.
"After receiving commands from the server, the IP Camera will then start automatically attacking other IP Cameras by exploiting a zero-day vulnerability that was made public a few months ago," Trend Micro notes.
"Attackers exploiting this vulnerability will be able to get the password file from the user, providing them the means to do command injections regardless of password strength."
Trend Micro warns that owners of a Chinese-made wireless camera should be on guard and should make sure that they are not using the default password.
However, the real problem is the maker of these cameras, the security firm adds.
"The burden of IoT security does not rest on the user alone—it's also dependent on the vendors themselves, as they should be the ones responsible for making sure that their devices are secure and always updated," Trend Micro concludes. µ
You can't fault them for speed
Investigation reveals that malicious code was injected into the firm's payment page
Plus the three-for-free
And it's not just on Ubuntu, neither