Is Mirai malware a problem for Mac OS and iOS
Does anyone know if the Mirai malware exists in OS or iOS?
iMac, OS X Yosemite (10.10.5), using a router (desktop and tablet)
Does anyone know if the Mirai malware exists in OS or iOS?
iMac, OS X Yosemite (10.10.5), using a router (desktop and tablet)
From <https://krebsonsecurity.com/2016/10/source-code-for-iot-botnet-mirai-released/>
"...The malware, dubbed “Mirai,” spreads to vulnerable devices by continuously scanning the Internet for IoT systems protected by factory default or hard-coded usernames and passwords..."
IoT devices are things like standalone internet web CAMs, internet enabled DVD players, internet enabled thermostats, internet enabled door locks, etc... where the manufactures threw in some paired down Linux kernel and minimal security precautions (if they included any security) and sold them to the general public. Many of these devices cannot even have their firmware upgraded, or the manufacture does not care to provide updates. These are very low cost, low margin items, where maintaining the firmware for security issues destroys their profits.
Macs, iPhones, iPads, iPod Touchs, AppleTVs, Apple Watches are NOT low cost, low margin items, and Apple builds in good security from the beginning, and provides software updates on a regular basis.
And OS X (macOS), iOS, tvOS and watchOS are not Linux based so the Mirai infections will not be able to get a foot hold at this time.
From <https://krebsonsecurity.com/2016/10/source-code-for-iot-botnet-mirai-released/>
"...The malware, dubbed “Mirai,” spreads to vulnerable devices by continuously scanning the Internet for IoT systems protected by factory default or hard-coded usernames and passwords..."
IoT devices are things like standalone internet web CAMs, internet enabled DVD players, internet enabled thermostats, internet enabled door locks, etc... where the manufactures threw in some paired down Linux kernel and minimal security precautions (if they included any security) and sold them to the general public. Many of these devices cannot even have their firmware upgraded, or the manufacture does not care to provide updates. These are very low cost, low margin items, where maintaining the firmware for security issues destroys their profits.
Macs, iPhones, iPads, iPod Touchs, AppleTVs, Apple Watches are NOT low cost, low margin items, and Apple builds in good security from the beginning, and provides software updates on a regular basis.
And OS X (macOS), iOS, tvOS and watchOS are not Linux based so the Mirai infections will not be able to get a foot hold at this time.
This link has a list of the IoT devices that were part of the recent DDOS attack
<https://krebsonsecurity.com/2016/10/who-makes-the-iot-things-under-attack/>
You will notice none of them are Apple products.
Bob's answers are great. Generally speaking Apple devices have good security, but your router and other devices connecting to your Mac and iPad probably aren't from Apple, so you need to watch.
1. Scan your network with the Mirai vulnerability scanner to identify vulnerabilities - https://www.incapsula.com/mirai-scanner/
2. Check your passwords on your modems, routers, any connected VoIP devices, and other devices and change the admin password to not use the default.
Is Mirai malware a problem for Mac OS and iOS