Security Market Segment LS
Monday, 09 August 2021 10:37

GeoEdge detects malvertising attack on smart home IoT devices, says antivirus apps and firewall not enough

By

A global-scale malvertising attack, the first ad-based cybercrime that targets home-network based IoT devices, has been uncovered by global cybersecurity company GeoEdge.

GeoEdge’s security researchers identified both the attack vector as well its origins in Slovenia and Ukraine in cooperation with the company’s AdTech partners InMobi and Verve Group.

GeoEdge says its security research team has been investigating the malvertising attack on smart home IoT devices since mid-June 2021.

The widely distributed attack vector is the first to use online advertising to silently install itself on apps on home-WiFi-connected IoT devices, and only requires that hackers possess a basic understanding of device API documentation, some JavaScript knowledge, and online advertising skills.

Market research firm IoT Analytics forecasts more than 30 billion IoT device connections worldwide by 2025. The sheer number of devices makes them attractive to malvertisers, and hackers can exploit them.

“GeoEdge’s patented behavioural code analysis technology and advanced malware detection capabilities detected these online ads covertly injecting malware into smart-home IoT devices,” explains GeoEdge CEO Amnon Siev. “We were able to expose the origin, infrastructure, and global scale of these attacks. This joint mission is built on trust and a deep understanding of the threat landscape which has enabled us to create a new standard for user protection.”

“Malvertising,” or malicious advertising, spreads malware through the injection of malicious code into online display ads via online advertising networks, which can potentially risk infection.

Advertising networks are generally unaware they are serving malicious content.

According to GeoEdge, users targeted with the attack aren't even required to click on the infected ad or navigate to a malicious page to initiate the attack on home network devices.

“It is critical that we have the checks and balances to identify and contain potential malicious threats before they can infect users’ devices,” explains InMobi senior vice president and general manager, publisher platform and exchange Kunal Nagpal.

Nagpal says InMobi’s collaboration with GeoEdge enhances user protection across advertising networks through real-time protection, and ensures delivery of safe ads to partners.

According to GeoEdge’s research, the IoT attack has the ability to manipulate IoT devices, download apps without users’ content, and risks theft of personal information and monetary instruments, as well as tampering with home systems such as smart locks and surveillance cameras.

GeoEdge notes antivirus apps and even firewalls are not sufficient, making it necessary to continuously block infected ads in real-time to prevent them from being rendered and presented to users.

Verve Group vice president of engineering Pieter de Zwart says that as the ad security landscape evolves, new cybersecurity risks require solutions.

He concludes that GeoEdge is committed to ensuring a safe advertising experience. “Partnering with key industry players enables us to fulfil that mission.”

Read 1704 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here
BACK TO LATEST NEWS here




ENABLE HYBRID CLOUD & REDUCE NETWORK LATENCY WHITEPAPER

Hybrid cloud promises to bring together the best of both worlds enabling businesses to combine the scalability and cost-effectiveness of the cloud with the performance and control that you can get from your on-premise infrastructure.

Reducing WAN latency is one of the biggest issues with hybrid cloud performance. Taking advantage of compression and data deduplication can reduce your network latency.

Research firm, Markets and Markets, predicted that the hybrid cloud market size is expected to grow from US$38.27 billion in 2017 to US$97.64 billion by 2023.

Colocation facilities provide many of the benefits of having your servers in the cloud while still maintaining physical control of your systems.

Cloud adjacency provided by colocation facilities can enable you to leverage their low latency high bandwidth connections to the cloud as well as providing a solid connection back to your on-premises corporate network.


Download this white paper to find out what you need to know about enabling the hybrid cloud in your organisation.

DOWNLOAD NOW!

PROMOTE YOUR WEBINAR ON ITWIRE

It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://itwire.com/itwire-update.html and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV https://www.youtube.com/c/iTWireTV/videos which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.

MORE INFO HERE!

BACK TO HOME PAGE
Kenn Anthony Mendoza

Kenn Anthony Mendoza is the newest member of the iTWire team. Kenn is also a contributing writer for South China Morning Post Style, and has written stories on Korean entertainment, Asian and European royalty, Millionaires and Billionaires, and LGBTQIA+ issues. He has been published in Philippine newspapers, magazines, and online sites: Tatler PhilippinesManila BulletinCNN Philippines LifePhilippine StarManila Times, and The Daily Tribune. Kenn now covers all aspects of technology news for iTWire.com.

Share News tips for the iTWire Journalists? Your tip will be anonymous

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments