Removal Process for SBIDIOT Malware

The SBIDIOT Malware is a new threat, which has a relatively low infection rate and targets Internet-of-Things (IoT) devices exclusively. The threat supports several types of commands, which allow it to execute multiple types of distributed-denial-of-service (DDos) attacks. While some IoT botnets specialize in cryptocurrency mining or click-fraud campaigns, the one associated with the SBIDIOT Malware appears to be entirely dedicated to DDoS attacks.

Just like other botnets of this type, the SBIDIOT Malware also relies on vulnerabilities in outdated firmware used by IoT devices. It seems that a large fraction of the infected devices are ZTE routers running an older firmware version that is subjectable to a Remote Code Execution (RCE) vulnerability. Often, botnets use the infected devices to scan the Internet for other vulnerable hosts, but the SBIDIOT Malware does no such thing – this might be one of the main reasons why its size is still relatively small, and the operators are failing to infect more devices. 

The SBIDIOT Malware's DDoS attacks are very flexible since the botnet is able to command the infected devices to use TCP, UDP, HTTP, STD, and UDPH flood against the targeted host. As for other features, the SBIDIOT Malware appears to be very limited – its operators are unable to download updates payloads or to deploy additional malware on compromised devices. Regardless of this, the SBIDIOT Malware is still a nefarious threat whose attacks must be prevented.

Protecting your IoT devices from malware attacks requires you to follow some simple security practices. Make sure to use strong login credentials, and also regularly check for firmware updates since they are meant to address vulnerabilities like the once found in older ZTE router firmware.  

By Ruik
April 8, 2021
April 8, 2021

Leave a Reply