The VPNFilter malware infection is much worse than originally determined. The list of affected devices has grown substantially. This includes devices from:
Take a look at the article on Talos for some fantastic detail on the malware. The resulting botnet is thought to be controlled by a Russian group targeting the Ukraine.
The latest trick from the malware is striping SSL as you browse so credentials and other sensitive information can be collected.
Factory resets of the affected routers are recommended.
Parrot has a new folding drone to compete with the DJI Mavic Air. The Anafi as it is called also has a 4k camera like the Mavic Air. The drone should retail for $100 less than the Mavic Air. I have a Mavic Air and it’s a fantastic drone with a great 4k camera so we will see how the new Parrot stacks up against it soon.
Prowli malware has infected more than 40,000 servers, modems and IoT devices. The malware is being used for cryptocurrency mining and for sending users to malicious sites.
DJI and Axon (a taser manufacturer) are teaming up to make surveillance drones to be used by US law enforcement. Axon already supplies police departments with body cameras which send their footage to Axon’s cloud-based data system evidence.com. Since drone cameras can gather a wider field of view from their cameras, this has some major privacy implications if this drone footage is going to captured and stored a significant amount of time.
RouterSploit is an exploitation framework for embedded devices available on GitHub.
Schools, with their networks that are probably not super strong to begin with, are now having to deal with IoT devices on their networks. Some schools are already having issues dealing with large numbers of students taking digital versions of the standardized testing. Adding IoT devices that manage building operations and such will likely only exasperate the performance issues of their networks.