With the average number of weekly cyberattacks per company rising by 75% in Q3 of last year, the pursuit of effective cybersecurity is relentless in the ever-evolving threat landscape. And while the Internet of Things (IoT) may have introduced us to ...
With the average number of weekly cyberattacks per company rising by 75% in Q3 of last year, the pursuit of effective cybersecurity is relentless in the ever-evolving threat landscape. And while the Internet of Things (IoT) may have introduced us to smart, hyperconnected devices, it’s also introduced a unique set of cybersecurity risks.
IoT devices have always been a juicy target for attackers—they’re often undersecured, overlooked, and ripe for exploitation. But here’s where PumaBot, a Go-based Linux botnet, stands out. It skips the chaotic "scan everything" approach and carefully chooses its targets with IP addresses fed from a command-and-control (C2) server. This isn’t a messy botnet that flails around hoping to get lucky; it’s calculated.
The Raspberry Pi OS has taken a big step forward with its latest update, built on Debian Bookworm. This isn’t just a routine refresh—it’s a deliberate shift toward the future. Changes are happening under the hood, some subtle, others bold, but they all contribute to keeping Raspberry Pi competitive and dependable in the fast-paced world of single-board computing.
As we connect almost every element of our homes to the Internet of Things (IoT), security concerns have spread far beyond traditional computing devices to everyday items. From fridges that track groceries to security systems we manage via smartphone apps - IoT brings both convenience and potential risks.
Recently discovered vulnerabilities in OpenWrt, an open-source firmware for routers and embedded devices, have cast light on new network security flaws that admins, businesses, and home router users must be aware of. OpenWrt recently addressed critical security issues that allowed attackers to inject malicious commands or exploit hash collisions in its Imagebuilder tool on Attendedsysupgrade Server (ASU), potentially serving compromised images to unwitting users, thereby undermining network security on these routers. With wide use across enterprises, small businesses, and tech-savvy households, this discovery has massive implications for all using OpenWrt.
Canonical has launched Ubuntu Pro for Devices, a comprehensive offering emphasizing security and compliance for IoT device deployments. This initiative aims to provide 10 years of security maintenance for Ubuntu and thousands of open-source packages, along with device management capabilities through Landscape, a systems management tool by Canonical. Ubuntu Pro also ensures that IoT devices receive reliable security patches from a trusted source.
Ransomware targeting Linux systems is a growing threat, particularly in IoT ecosystems. Cybersecurity analysts are presenting live forensic techniques to detect ransomware infections on Linux machines. Let's examine Linux ransomware's unique challenges and its potential impact on the IoT industry.
The rise of Linux in edge computing and IoT brings both promise and peril. Linux dominates the IoT and edge computing landscape. Its flexibility and open-source nature make it the top choice for adopters. However, with such widespread usage comes heightened risk.
Threat actors are using blockchain technology to hide the presence of malware on Linux IoT devices. The Nkabuse malware uses a new method of hiding itself from detection: it stores its code in the Bitcoin blockchain. Every time an infected device communicates with the Bitcoin network, it sends a portion of its code with each transaction. This method allows Nkabuse to stay hidden even if it is discovered by a security researcher or neutralized by a patch.
The Rust botnet, first discovered in January 2019, is a new type of malware that targets the MIPS processor architecture. The malware works by injecting malicious code into other programs running on vulnerable systems, and it can spread itself across networks using peer-to-peer (P2P) networks.
In the rapidly evolving world of managing Internet of Things (IoT) devices, ensuring secure remote access to ssh iot devices behind firewalls and NAT routers is of utmost importance. This article explores remote IoT device management, focusing on the secure ways to access Raspberry Pi web devices remotely. We will delve into two key methods - SSH (Secure Shell) and web-based access, highlighting the benefits they offer in overcoming firewall and network address translation challenges.
Internet-facing Linux systems and Internet of Things (IoT) devices are being targeted as part of a new campaign designed to illicitly mine cryptocurrency. "The threat actors behind the attack use a backdoor that deploys a wide array of tools and components such as rootkits and an IRC bot to steal device resources for mining operations," Microsoft threat intelligence researcher Rotem Sde-Or said.
IoT cybersecurity company Sternum has identified a security vulnerability affecting Zyxel Networks’ Linux-operated NAS drives, including NAS326, NAS540, and NAS542 models, running on firmware version 5.21.
The new Secure Compute Module (SCM) Pro is an embedded platform built around the Raspberry Pi CM4 for IoT and edge applications requiring security features such as Verified Boot, Hardware Root of Trust, File System Encryption, Physical Tamper Sensors, etc.
A new Mirai botnet variant tracked as ‘V3G4’ targets 13 vulnerabilities in Linux-based servers and IoT devices to use in DDoS (distributed denial of service) attacks.
The Zerobot botnet, first detected earlier this month, is expanding the types of Internet of Things (IoT) devices it can compromise by going after Apache systems.
A cross-platform botnet, ‘MCCrash’ that starts out from malicious software downloads on Windows devices and spreads to a range of Linux-based devices was recently examined by the Microsoft Defender for IoT research team.
For the eighth year, the Eclipse Foundation has surveyed Internet of Things (IoT) and edge developers, finding that when it comes to workloads, artifacts and OS choices, artificial intelligence (AI), containers and Linux all rank highly.
