IoT will create unmanageable botnet risk, says Juniper

Research predicts million-plus IoT device botnets will be deployed by cybercriminals
IoT devices could be exploited for massive botnets that could be used for a variety of purposes by cyber criminals, Juniper Research warns.
IoT devices could be exploited for massive botnets that could be used for a variety of purposes by cyber criminals, Juniper Research warns.

Share

The growth of the Internet of Things brings with it a risk of "unmanageable" botnet attacks, according to analyst company Juniper Research.

Juniper said that the rise in the number of IoT connected devices, predicted to reach over 15 billion consumer IoT devices alone by 2021, will lead to million device botnets that will be widely used by cyber criminals.

In total, the IoT will total over 46 billion devices by 2021, Juniper noted in its latest report, ‘The Internet of Things for Security Providers'.

IoT devices have already been hijacked for use in botnets, notably the Mirai botnet, used to attack Domain Name Server provider Dyn last year, which generated volumes of traffic reportedly reaching 1.2 Tbps.

Such attacks could be just the "tip of the cyber security iceberg", Juniper warned, with IoT botnets likely to be used for more malicious purposes than just disruption of internet services.

Research author Steffen Sorrell said: "Attacks such as those on Dyn last October can be viewed as proof of concepts. In the medium-term, botnets will be used far more creatively - not only to disrupt services, but also to create a distraction enabling multi-pronged attacks aimed at data theft or physical asset disruption."

The research called on IoT device manufacturers to ‘take responsibility' by implementing security-by-design, adding that corporate-scale vendors such as Amazon, Google and Samsung should lead efforts to galvanise other vendors to apply security best-practices.

Additionally, the research found that the security threat landscape is widening. IoT DDoS (distributed denial-of-service) ‘botnet' attacks have become infamous in 2016, although in the medium-term, personal data theft, corporate data theft and physical asset damage will be the primary goals for IoT hackers.

It was found that enterprise and industry are investing heavily in security for the IoT, driven in part by the realisation of the total lack of security in industrial systems, and the need to establish trust in IoT.

The consumer market landscape however is "woeful", Juniper said, with lax attitudes towards security from across the spectrum. Lack of confidence in IoT security is likely to hold up the adoption of consumer IoT, and many smaller players with high levels of competition and small margins will lack the ability to fund security development and maintenance. This will place the onus on larger players to drive the focus on IoT security. Regulatory, corporate and media collaboration would also be needed in order to improve the overall threat landscape, Juniper said.

 

Editor's Choice

The robots are coming: Impact of AI on executive search
As the technology industry’s elite struggle to agree on the potential impact of AI and a raft of people queuing up to advise on the potential disruption it will cause, this article by John Curtis-Oliver, Partner at Boyden studies the potential impact on the executive hiring and the executive search industry.
Saudi Football changes pitch from MBC to STC
The news comes just a few days after the release of Saudi businessman Waleed al-Ibrahim, who has management control of MBC. Reuters reports senior Saudi officials saying that Ibrahim agreed to an “undisclosed settlement after admitting to unspecified violations”.
HetNets: paving the way for “ultraband” age
Over time, telecom operators will provide consumers with a “universal connectivity” service (to rule them all), incorporating Wi-Fi and mobile broadband as a single resource, in an “always best connected” mode, leading to an ultraband connectivity service.

Don't Miss a Story

You may also like

Mobile penetration reaches 70% in least developed countries of the world
Digital skills gap identified as a key barrier to ICT and internet use in LDCs
New model proposes device to device networks for improved mobile services
D2D technology works similarly to personal hotspots shared between individuals
CASE STUDY: Telecom Serbia transforms customer experience with Avaya
Operator doubles its attainment of SLAs on mobile services with almost zero abandoned calls
Bahrain leads the Arab world in ICT development index
However, substantial digital divides continue to exist between regions and countries