2017-04-07

The BrickerBots are coming ...

Stylized BrickerBot    
As if things couldn't get worse on the internet, there is a new malware called BrickerBot out to turn your IoT devices into "bricks" much like the cold clay varieties used to build barbeque pits, walls, and the like.

This malware ruins some linux based routers by corrupting their storage mechanisms and scrambling the kernel (hardware control) parameters rendering the device totally unusuable.

The problem lay primarily in the unsecured device on the public domain. Being the security freak I am I ensure that there is good password implementation and ALWAYS turn off remote management in all my routing hardware up front.

However, I know those who leave the factory default passwords in place and are vulnerable to this exploit.

This crap was detected by the cyber-security firm Radware and seems to be targeting a Linux distro called BusyBox which provides a stripped down version of Unix based tools at the disposal of the creeps who would have their way with you.

The two varieties of this malware are BrickerBot.1 and BrickerBot.2 with their goal being permanent denial of service. I intend to double up on my security vigilance when new hardware goes online.