We have witnessed just a few weeks into 2025 and the internet is already witnessing a sharp rise in the Distributed Denial-of-Service (DDoS) attacks which are fueled by Internet of Things (IoT) devices. Security researchers have identified numerous cases revealing that routers, web cameras and other everyday devices are being infected with malware. These are turning into powerful tools for cybercriminals.
Wave of IoT Botnets
Cloudflare reported earlier this month that the largest DDoS attack ever seen peaked at 5.6 terabits per second. It attack originated from 13,000 compromised IoT devices which were run on a variant of Mirai malware. The Mirai malware is a notorious program that is basically known for orchestrating massive cyberattacks. Security firm Qualys revealed on the same day that a similar attack involving AVTECH cameras and Huawei routers infected with another Mirai variant named the Murdoc Botnet.
Trend Micro, Infoblox and more such security companies reported that IoT botnets were wreaking havoc globally. Trend Micro highlighted that the attacks targeted Japan Infoblox stated that a botnet used 13,000 MikroTik routers to send malicious spam emails. The findings show that botnets have become a widespread threat and not just a niche concern.
China-based Xlab reported another IoT botnet that exploited vulnerabilities in industrial and consumer-grade routers. The network is equipped with 15,000 compromised devices which spans across China, the U.S., Iran and more countries to deliver constant DDoS attacks.
Why IoT Devices Are Vulnerable
IoT devices are attractive targets for cybercriminals as they often run on outdated software as well as are shipped with default passwords. The devices are difficult to secure and their high bandwidth makes them ideal for launching large-scale attacks. DDoS attacks exceeding 1 terabit per second were shocking just a few years ago, but recent attacks have exceeded this by five times.
Attackers are now even combining IoT devices with virtual machines hosted in the cloud to create hybrid botnets. This is making the DDoS attacks even more devastating.