Researchers uncover thriving market for malware targeting IoT devices

Kaspersky researchers have found a flourishing underground market on the dark web offering zero-day exploits for Internet of Things (IoT) devices and IoT malware. Distributed Denial of Service (DDoS) attacks via IoT botnets were the most popular service among hackers. The primary method for infiltrating the devices was brute-forcing weak passwords, although exploiting network service vulnerabilities was also common. Kaspersky stressed the need for vendors to prioritise cybersecurity in IoT devices, and suggested that they make changing default passwords mandatory and regularly release patches to rectify vulnerabilities.