Botnets Step Up Cloud Attacks Via Flaws, Misconfigurations
Infamous botnets like Mirai are exploiting Web-exposed assets such as PHP servers, IoT devices, and cloud gateways to gain control over systems and build strength.
IoT systems connect sensors and control networks, so device identity, secure updates, data protection, and reliable operation support safety and availability.
Search across headline titles and summaries.
Background for this topic.
Internet of Things (IoT) comprises physical devices—such as sensors, cameras, appliances, vehicles, medical equipment, and industrial controllers—that collect data, perform actions, and communicate with other devices or cloud services. Its distinctive assets include telemetry, control functions, device identities, and sometimes sensitive location, health, or operational data. Availability and integrity can be safety- or production-critical, while many devices have limited processing capacity, long service lives, and constrained maintenance access.
Security depends on the complete device lifecycle: maintain an accurate inventory, replace default credentials with unique authentication, verify firmware and provide signed, supportable updates, and restrict management interfaces through network segmentation. Exposed services, insecure update mechanisms, weak device-to-cloud APIs, physical access, and third-party components can enable unauthorized monitoring or control, compromise other systems, or conscript devices into attacks. Privacy protections should limit collection and access to telemetry, and monitoring should support detection and safe isolation without disrupting essential operations.
Infamous botnets like Mirai are exploiting Web-exposed assets such as PHP servers, IoT devices, and cloud gateways to gain control over systems and build strength.
Cybersecurity researchers are calling attention to a spike in automated attacks targeting PHP servers, IoT devices, and cloud gateways by various botnets such as Mirai, Gafgyt, and Mozi
A rise in attacks on PHP servers, IoT devices and cloud gateways is linked to botnets exploiting flaws, according to new research published by Qualys
Aisuru, the botnet responsible for a series of record-smashing distributed denial-of-service (DDoS) attacks this year, recently was overhauled to support a more low-key, lucrative and sustainable business: Renting hundreds of thousands of infected Internet of Things (IoT) devices to proxy services that help cybercriminals anonymize their traffic. Experts says a glut of proxies from Aisuru and other sources is fueling large-scale data harvesting efforts tied to various artificial intelligence (AI) projects, helping content scrapers evade detection by routing their traffic through residential connections that appear to be regular Internet users.