1 Oct
2016
1 Oct
'16
3:45 a.m.
the "Iot" is quite a culprit..I am
constantly probed and attacked by
routers, refrigerators, and many, many so-called "smart
TV's"...sometimes, when I'm bored, I shut them off...it gives me a
tickle to think of someone botting away and abruptly being shut
down...but the poor, unknowing customer is the one who suffers...I've
got to wonder if they even notice their appliance is acting strangely,
or laggy, and why...
this would best be fixed at the manufacturers end..
At least half of the problem is the refusal of ISPs in general to implement BCP38.
When there would be source address filtering, we would not see all the backscatter
(DNS replies mainly).
Then there are shodan.io and a lot of other "research" systems. I keep a
blacklist
to drop all their traffic, but of course it still arrives at the router.
They usually offer unlisting the network, but at least in the case of shodan.io
this is completely fake. A day or a week later they just resume.
Finally we all know about the cheap virtual Linux cloudhosting companies like AWS,
Linode, etc. Probably half blackhats, half sincere users don't even know that
they got hacked. After all, Linux is secure so you don't have to think about that.
Rob