Bashlite IoT malware upgrade lets it target WeMo home automation devices

[silversurfer]

A version of the Bashlite IoT malware has received an update over the past few weeks that allows it to target Belkin WeMo home automation switches.
 
Further, as part of this update, the malware can now open backdoors and run commands on infected devices, deploy a cryptocurrency mining module, can detect and remove competing IoT malware, and has also expanded the types of DDoS attacks it can launch from infected devices.
 
"While we have not seen significant detections for these versions of Bashlite, it's worth noting that it's already in the wild," cyber-security firm Trend Micro said in a report today.

The company's experts believe the person who modified recent versions of the Bashlite malware to improve it with new functionality is using a module for the Metasploit penetration testing framework to infect smart devices via the Belkin WeMo UPnP SDK.

This includes Belkin WeMo home automation switches, but also routers, smart lightbulbs, electrical plugs, light switches, motion sensors, surveillance cameras, and other devices that support this SDK.

SOURCE: https://www.zdnet.com/article/bashlite-i...n-devices/