Malvertising : The new threat to IoT devices

Internet of Things (IoT), refers to an interconnected system of WiFi, smart home applications, sensors and software technologies. IoT enables the exchange of information via the Internet. IoT is lending specialized assistance to the agricultural sector. 

 

IoT has multiple applications in diverse fields. IoT security has always been a topic of concern. As interconnected devices exchange information there must be a stringent strategy to overcome issues related to cybersecurity. 

 

IoT device security is again in the questionable position as a fake advertising campaign is targeting the IoT devices at homes. This infamous “malvertising” campaign has already stolen data from the Ukraine and Slovenia and is now targeting the IoT users in the United States. 

 

The attack on IoT home devices may hamper the working systems of large scale business enterprises, as a lot of companies have opted for a hybrid work mode the “malicious” software may target individual users to extract crucial company data. 

 

These “malvertising” ads are being generated by a criminal ring, no state sponsored organisation has taken the responsibility of “malvertising” ad campaign. Hackers are primarily targeting the home devices to steal users personal data and other sensitive information. 

 

Hackers steal credit card details, and bank account details from the victim’s computer system. Later, they sell the information on the dark web. The malicious ad campaign was brought into light by famous ad security platform GeoEdge. 

 

As reported by eSecurity Planet GeoEdge's CEO Amnon Siev CEO of GeoEdge said, “With many IoT devices unprotected during the pandemic, the potential for an attack is substantial.”

 

“The new vector reveals browsing the web on the Wi-Fi network may open a gate to IoT attacks, which may have many impacts, including attacking enterprises.” he added. 

 

(Must Check: Cybersecurity in the Internet of Things (IoT) World: 5 Most Common Types of Threats in 2020)

 

Malvertising

 

Malvertising is a new way that hackers are using to target customers. Malvertising refers to the process of spreading malware via online advertising mediums. Hackers fit in  malware ads with the real advertisements. Users are unsafe from the malvertising ad campaigns. 

 

Malvertising can inject any spyware and malware in the device. Sometimes even before a user actually clicks on the main website their data access is gone. 

 

Right after loading the webpage, the malicious software proceeds with stealing information.