[ad_1]
A Russian state-sponsored hacking group is taking advantage of the insufficient security of Internet of Things (IoT) devices to infiltrate corporate networks, at least according to Microsoft. Researchers at the Microsoft Intelligence Threat Center have uncovered corporate hacking attempts using common Internet of Things (IoT) devices, including VOIP phones, desktop printers, and video surveillance devices. In some cases, these hackers were not required to decrypt pbadwords: they only used the default pbadwords provided with these devices.
Microsoft attributed the attacks to a group called Strontium, also known by other names such as Fancy Bear and APT28. In case you remember, Fancy Bear was the Russian state-backed group that was responsible for the DNC's hacking in 2016, various attempts to infiltrate US officials, and attempts to influence the elections in the US. European Union earlier this year. Microsoft was able to identify the attacks early, but the group's goals remain unclear. Of course, IoT devices have become entry points for hackers, allowing them to dive into the network.
In this regard, Microsoft said: "After accessing each IoT device, administrators administered the tcpdump hack to track network traffic on local subnets. They were also seen listing administrative groups for later exploitation. When administrators switched from one device to another, they could remove a simple tool, such as a shell script, to prove their continued presence on the network, which allowed them extended access to continue searching the victims. The network traffic badysis showed that the devices were also connecting to an external control server. "
Microsoft has already sent 1,400 notifications to those targeted by Strontium. Most attacks targeted government sectors, information technology, the military, defense, medicine, education, and engineering. However, one in five attacks targeted NGOs, think tanks and political groups around the world.
Microsoft is now encouraging businesses to protect their networks by securing their IoT devices. It should also be noted that Microsoft supports the goal of the FIDO Alliance to create a new pbadword-based security system for the Internet of Things sector.
This is the detail of the new Microsoft confirms that Russian hackers are using Internet of Things to penetrate today's networks. We hope that we will have succeeded in providing you with all the details and information and allowing you to follow all our news.
It should be noted that the original news has been published and is available online and has been confirmed by the Gulf 365 editorial team. It may have been modified and fully transferred. You can read and follow the news from its main source.
[ad_2]
Source link
