Skip to main content

Nokia Threat Intelligence Report finds malicious IoT botnet activity has sharply increased

Press release 

Nokia Threat Intelligence Report finds malicious IoT botnet activity has sharply increased

  • Number of IoT devices (bots) engaged in botnet-driven DDoS attacks rose from around 200,000 a year ago to approximately 1 million devices

7 June 2023

Espoo, Finland – The latest Nokia Threat Intelligence Report released today has found that IoT botnet DDoS (Distributed Denial of Service) traffic, originating from a large number of insecure IoT devices with the aim of disrupting telecom network services for millions of users, increased fivefold over the past year, following Russia’s invasion of Ukraine and stemming from the growing increase in profit-driven hacking collectives operated by cybercriminals.

This sharp increase, also supplemented by the increased use of IoT devices by consumers around the world, was first noticed at the beginning of the Russia-Ukraine conflict but has since spread to other parts of the world, with botnet-driven DDoS attacks being used to disrupt telecom networks as well as other critical infrastructure and services. The number of IoT devices (bots) engaged in botnet-driven DDoS attacks rose from around 200,000 a year ago to approximately 1 million devices, generating more than 40% of all DDoS traffic today.

The most common malware in telecommunication networks was found to be a bot malware that scans for vulnerable devices, a tactic associated with a variety of IoT botnets. There are billions of IoT devices worldwide, ranging from smart refrigerators, medical sensors, and smart watches; many of which have lax security protections.

The Threat Intelligence Report also found that the number of trojans targeting personal banking information in mobile devices has doubled to 9%, putting millions of users around the world at heightened risk of having their personal financial and credit card information stolen. A trojan is nefarious software code disguised as being safe for use.

The report, however, did find some encouraging news, showing that malware infections in home networks declined from a Covid-high of 3% to 1.5%, close to the pre-pandemic level of 1%, as malware campaigns targeting the wave of at-home workers tapered off, and more people returned to office work environments.

Those findings are based on data aggregated from monitoring network traffic on more than 200 million devices globally where Nokia NetGuard Endpoint Security product is deployed.

The Threat Intelligence Report is compiled by experts at the Threat Intelligence Center in Canada, the Nokia Cyber Security Center in France; the Nokia Security Operations Center in India; and Nokia Deepfield, a part of Nokia focusing on software applications covering network analytics and DDoS security.

Hamdy Farid, Senior Vice President, Business Applications at Nokia said: “The key findings in this report underline both the scale and sophistication of cybercriminal activity today. A single botnet DDoS attack can involve hundreds of thousands of IoT devices, representing a significant threat to networks globally. To mitigate the risks, it’s essential that service providers, vendors, and regulators work to develop more robust 5G network security measures, including implementing telco-centric threat detection and response, as well as robust security practices and awareness at all company levels.”

Resources and additional information
Web page: Nokia Threat Intelligence

Web page: Cybersecurity

Web page: DDoS security

About Nokia
At Nokia, we create technology that helps the world act together.

As a B2B technology innovation leader, we are pioneering networks that sense, think and act by leveraging our work across mobile, fixed and cloud networks. In addition, we create value with intellectual property and long-term research, led by the award-winning Nokia Bell Labs.

Service providers, enterprises and partners worldwide trust Nokia to deliver secure, reliable and sustainable networks today – and work with us to create the digital services and applications of the future.

Media Inquiries
Nokia Communications, Corporate
Email: Press.Services@nokia.com

Follow us on social media
LinkedIn Twitter Instagram Facebook YouTube

Test

Disclaimer & Cookie Notice

Welcome to GOLDEA services for Professionals

Before you continue, please confirm the following:

Professional advisers only

I am a professional adviser and would like to visit the GOLDEA CAPITAL for Professionals website.

Cookie Notice

We use cookies to improve your experience on our website

Information we collect about your use of Goldea Capital website

Goldea Capital website collects personal data about visitors to its website.

When someone visits our websites, we use a third party service, Google Analytics, to collect standard internet log information (such as IP address and type of browser they’re using) and details of visitor behavior patterns. We do this to allow us to keep track of the number of visitors to the various parts of the sites and understand how our website is used. We do not make any attempt to find out the identities or nature of those visiting our websites. We won’t share your information with any other organizations for marketing, market research or commercial purposes and we don’t pass on your details to other websites.

Use of cookies
Cookies are small text files that are placed on your computer or other device by websites that you visit. They are widely used to make websites work, or work more efficiently, as well as to provide information to the owners of the site.