Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

TU 2 ESS > Mirai > Flashcards

Mirai Flashcards

1
Q

What is Mirai?

A
  • IoT botnet which first appeared in 2016
  • Actively scans the network and propagates to any vulnerable devices it finds
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Why is Mirai possible?

A
  • Vulnerabilities
  • Weak credentials
  • Poor network management
  • Always online
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Process Mirai

A
  1. Scan
  2. Report IP + credentials to Listener Server
  3. Add new device to Loader Server
  4. Load
  5. Recruited
  6. Send command to C&C server
  7. Dispatch command
  8. Attack
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Mirai Mitigation

A
  • Limit exposure to external adversaries
    -> Firewalls, NAT
    -> Close open ports not needed for functionality
  • Ensure correct security configuration
  • Remove device vulnerabilities
    -> Apply security patches
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Mirai Detection

A
  • Signature-based intrusion detection
    -> System monitors communications or device behavior for known patterns of attack
    -> Fast and reliable, widely deployed
  • Anomaly-based intrusion detection
    -> Detects deviations from normal behavior as anomalies
    -> Able to detect also previously unknown attacks
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Mirai Recovery

A
  • Network isolation
    -> Traffic filtering rules used to isolate infected device from others
    -> Prevent further injections in the network
    -> Prevent device from attacking remote victims
  • Reset device
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

TU 2 ESS (9 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions