Momentum Botnet
The Momentum Botnet is a new malware project that seems to target Linux devices exclusively. Cybersecurity experts that track the Momentum Botnet's activity and development report that the threatening software is compatible with a broad range of CPU architectures that run Linux – ARM, Intel, MIPS and others. This means that the Momentum Botnet may be able to work on routers, Internet-of-Things devices, smartphones and other devices. Once the operators of the Momentum Botnet manage to infiltrate a device, they deploy a different backdoor depending on the compromised device's architecture – often, they use Mirai, but they also have used the BASHLITE and Kaiten variants.
The operators of the Momentum Botnet find vulnerable devices by using public port scanning services that check the Internet for accessible Web-connected devices - the scanner then checks if the targeted device is running outdated firmware that may be vulnerable to exploits.
While some modern botnets are used to execute cryptocurrency mining operations, the purpose of the Momentum Botnet is more traditional – its operators can command the infected devices to run a coordinated Distributed-Denial-of-Service (DDoS) attack that may cause Internet services and networks to malfunction. The botnet's configuration allows it to execute over 30 different DDoS attacks, therefore ensuring that it will be able to target the most vulnerable spot of the network it aims to take down.
In terms of the Command & Control center, the authors of the Momentum Botnet register all infected devices on an Internet Relay Chat (IRC) server. They can use this server to issue commands that reach all active members of the Momentum Botnet.
Internet-of-Things devices and routers are becoming a frequent target of cybercrime organizations, and it is important to take the required measures to protect your Internet-connected devices. In addition to not using the factory security settings, you also should make sure to use reliable login credentials, as well as to apply the latest firmware updates and security patches that aim to eliminate the vulnerabilities that threats like the Momentum Botnet go after.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.