The New Reaper Botnet may be Dangerous for the Internet
Check Point Research a security group asserts there is one botnet which is evolving and growing very fast with the ability to sometime in future collapse the Internet. Understandably, millions of IoTs (Internet of Things) referring to Internet-connected appliances make up this botnet which has been compared with the hitherto notorious Mirai botnet. Interestingly, this new botnet is gearing towards making Mirai smaller both in terms of size and pace.
The new botnet is dubbed Reaper that undermines the severity of other attacks. While Mirai compromised poorly protected computers running on default passwords and thus managed its expansion, Reaper compromises via hack and infiltration into innumerable devices worldwide.
According to Manager Maya Horowitz of threat intelligence team at Check Point, the Reaper bot has contaminated millions of devices. With Reaper we
recall the Mirai malware that amassed more than 5 lakhs internet-connected bots in 2016, as a few estimates show. Subsequently, it started executing one gigantic DDoS (distributed denial-of-service) assault which halted people's access to the Internet all over USA. In.pcmag.com posted this on the Web dated October 21, 2017.
Explaining with reference to Reaper, Horowitz says compromising IP-based camera like devices in bulk little allows several criminal uses except DDoS although what motivates such DDoS triggering isn't yet clear.
Check Point researchers state that following their firm's international IPS (Intrusion Prevention System) detecting Reaper towards September end, the botnet's operation has vigorously multiplied, with the malicious program developing with new changes everyday for exploitation of security flaws within the increasing number of contaminated devices that suppliers like TP-Link, D-Link, GoAhead, and others make available.
The Lua-based computer program is already running on innumerable devices which are set to make the botnet herders install their attack wares. The botnet has not been used yet, so it's reported; however, the code indicates it is ready to get the signal for beginning its series of DDoS assaults. When most active, Mirai's bandwidth surpassed 1Tbps while it brought down websites such as Twitter, GitHub, Airbnb, Netflix and Reddit. Reaper's sophistication is much more with the capacity for launching assaults on an unprecedented magnitude, the researchers warn.
» SPAMfighter News - 10/27/2017