DDoS in the IoT: Mirai and Other Botnets

  title={DDoS in the IoT: Mirai and Other Botnets},
  author={Constantinos Kolias and Georgios Kambourakis and Angelos Stavrou and Jeffrey M. Voas},
The Mirai botnet and its variants and imitators are a wake-up call to the industry to better secure Internet of Things devices or risk exposing the Internet infrastructure to increasingly disruptive distributed denial-of-service attacks. 

Figures from this paper

Mirai Botnet In Lebanon
  • Hasan k. Idriss
  • Computer Science
    2020 8th International Symposium on Digital Forensics and Security (ISDFS)
  • 2020
The Mirai malware’s leading events are discussed, a brief of the famous variants created based on the Mirai source code are provided and a detection and mitigation method to protect the system is proposed, taking into consideration the Lebanese industry and offering a methodology to make it Mirai Botnet resilient.
MQTT Vulnerabilities, Attack Vectors and Solutions in the Internet of Things (IoT)
Internet of Things (IoT) paved the way for devices and machine communication using TCP/IP protocol. Lightweight and stateless communication is imperative especially in a situation requiring conserv...
DIMI: Detecção Inteligente de Botnets Mirai em Redes IoT
The mechanism for detecting Mirai botnet attacks on IoT networks using ML techniques and comparing different approaches was evaluated using a set of traffic data from real IoT devices, achieving results with 99 % precision.
Stealing, Spying, and Abusing: Consequences of Attacks on Internet of Things Devices
The real-world implications of IoT attacks show the risks associated with these new technologies, and can help articulate the need for better security practices.
DDoS attacks on the internet of things and their prevention methods
It is evident from this review that there is no perfect solution yet for IoT security, but this field still has many opportunities for research and development.
Improving IoT Botnet Investigation Using an Adaptive Network Layer
This paper investigates the Mirai and Bashlite botnet families, where it was possible to block attacks to other systems, identify attacks targets, and rewrite botnets commands sent by the botnet controller to the infected devices.
An In-Depth Analysis of the Mirai Botnet
This paper will focus on a particularly widespread piece of IoT malware known as the Mirai botnet by examining what its capabilities are, how it spreads to new devices, the impact that it has already had, and propose mitigation solutions to help prevent future attacks.
Identification of IoT User Actions in Encrypted Traffic
A technique to demonstrate that private information about the user behavior still leak out is proposed, aimed at decomposing a single user command into atomic actions.
A scheme to enhance the security of MQTT protocol
The paper attempts to effectively monitor and minimize the impact of spoofing attacks with usable cryptographic primitives in IoT networks.
The Evolution of Bashlite and Mirai IoT Botnets
This work studies Bashlite botnets and their successors, Mirai, and finds Mirai uses more resilient hosting and control infrastructures, and supports more effective attacks.


Botnets and Internet of Things Security
This research highlights the need for scalable security solutions optimized for the IoT ecosystem to address the high vulnerability of Internet of Things systems and devices.
Securely Making "Things" Right
The Internet of Things (IoT) promises to seamlessly bind the physical world to cyberinfrastructure, but the Internet's insecure design principles could lead to life-threatening consequences. It's
Turning Internet of Things(IoT) into Internet of Vulnerabilities (IoV) : IoT Botnets
The anatomy of the IoT botnets and their basic mode of operations are outlined, some of the major DDoS incidents using IoTBotnets in recent times along with the corresponding exploited vulnerabilities will be discussed.
Botnets: A survey
McMillen and M . Alvarez , “ Mirai IoT Botnet : Mining for Bitcoins ?
  • Persirai : New Internet of Things ( IoT ) Botnet Targets IP Cameras
Persirai: New Internet of Things (IoT) Botnet Targets IP Cameras,
  • blog, TrendLabs,
  • 2017
New Mirai Variant Launches 54 Hour DDoS Attack against US College,
  • blog, Imperva Incapsula,
  • 2017
Record-Breaking DDoS Reportedly Delivered by >145K Hacked Cameras,
  • Ars Technica,
  • 2016
Profetis, “Hajime: Analysis of a Decentralized Internet Worm for IoT Devices,
  • Rapidity Networks;
  • 2016
Record - Breaking DDoS Reportedly Delivered by > 145 K Hacked Cameras You Can Now Rent a Mirai Botnet of 400 , 000 Bots Today the Web Was Broken by Countless Hacked Devices — Your 60 - Second Summary