Millions of Vulnerable IoT Devices Fuel Massive Cyberattacks

The Internet of Things (IoT) ecosystem has become a double-edged sword. What should be a source of convenience and entertainment has turned into a network of zombie devices controlled by cybercriminals. According to a report by The Wall Street Journal picked up by Slashdot, millions of connected home devices—from digital frames to streaming players—are being used to launch some of the largest cyberattacks ever recorded.

What Happened?

The Journal team purchased digital frames on Amazon and streaming devices at Walmart. Upon connecting them, they detected an immediate surge in suspicious traffic: visits to gambling sites, pornography, cryptocurrencies, and other illicit content, as well as attempts to access Outlook and Gmail accounts. These devices contained pre-installed backdoors, likely incorporated by manufacturers in exchange for payment from residential proxy companies or directly by hackers.

Residential proxy companies rent access to these home networks, allowing third parties to browse as if they were legitimate users. This facilitates activities like ad fraud, ticket scalping, and espionage. But the problem escalated when hackers took control of these backdoors. In June, Canadian authorities arrested a 23-year-old man accused of hijacking over a million devices to launch unprecedented DDoS attacks.

Why Is This Important?

The Journal report is not an isolated case. The scale of the problem is massive: estimates of infected devices range from tens of millions to over 500 million. This means that any home with a cheap or knockoff IoT device could be involuntarily contributing to global cyberattacks. Security researchers warn that nation-state attacks have already been launched from these endpoints, implying that a simple digital frame in a living room could be part of a cyberwar operation.

Moreover, these devices are not only used for DDoS. They are also employed in ad fraud (generating fake clicks), automated ticket scalping, and as entry points to access home networks and steal credentials. The generated traffic can saturate networks and expose users to privacy and financial risks.

What Will Be the Consequences?

The consequences are multiple. First, trust in low-cost IoT devices erodes. Consumers must be aware that a cheap product may come with security 'surprises.' Second, major platforms like Amazon and Walmart face pressure to audit and remove infected products. Amazon stated the digital frame has been unavailable since last year, and both companies claim they take action when malware is confirmed in third-party products. However, the global and fragmented nature of the supply chain makes eradication difficult.

For cybercriminals, the business model is lucrative and low-risk. As long as manufacturers continue accepting payments to include backdoors, the problem will persist. Cybersecurity experts warn that even larger attacks are coming if the root issue is not addressed. This could involve stricter regulations, mandatory security certifications, and greater legal liability for manufacturers.

What Should Readers Know?

• Choose devices from reputable brands with a good track record of security updates.
• Change default passwords and disable unnecessary features like remote access.
• Keep firmware updated and, if possible, segment the home network to isolate IoT devices.
• Be wary of deals that seem too good to be true on connected devices, especially from third-party sellers.
• Use security solutions on the router that can detect anomalous traffic.

In summary, the convenience of the smart home comes with a hidden cost. Every connected device is a potential soldier in a cyber army. Responsibility falls on manufacturers, consumers, and regulators alike to close these backdoors before the next wave of attacks becomes unstoppable.