Skip to Content
Uncategorized

Beware the Botnet of Apps

August 29, 2017

The proliferation of smart devices being corralled to take down the Web now has some competition, in the shape of swarms of malicious apps installed on thousands of smartphones.

Over the past year, the humble botnet—a collection of devices hacked to work with one another to send debilitating surges of data known as DDoS attacks to servers—underwent a renaissance. The huge number of insecure devices, such as video cameras and printers, that now connect to the Internet provides a hacker’s paradise, and they’ve been increasingly commandeered to take down websites and services. We even made Botnets of Things one of our 10 breakthrough technologies of 2017.

But nefarious types pulled off a similar trick by spreading 300 malicious apps across the Google Play app store. Ars Technica reports that, once installed, those apps commandeered the device on which they sat to send huge quantities of spoof traffic to websites, ultimately forcing some services offline. According to security researchers at Cloudflare, who helped an industrywide effort to understand the botnet that’s now called WireX, the hackers were at one point able to control over 120,000 IP addresses in 100 countries.

The botnet, which the researchers call "one of the first, and certainly one of the biggest, Android-based DDoS botnets," has been disabled, and the offending apps removed from the Play Store. But the news does highlight how any large collection of Internet-connected devices can be used as a botnet if hackers have the wherewithal to make it happen.

Keep Reading

Most Popular

Here’s how a Twitter engineer says it will break in the coming weeks

One insider says the company’s current staffing isn’t able to sustain the platform.

Technology that lets us “speak” to our dead relatives has arrived. Are we ready?

Digital clones of the people we love could forever change how we grieve.

How to befriend a crow

I watched a bunch of crows on TikTok and now I'm trying to connect with some local birds.

Starlink signals can be reverse-engineered to work like GPS—whether SpaceX likes it or not

Elon said no thanks to using his mega-constellation for navigation. Researchers went ahead anyway.

Stay connected

Illustration by Rose Wong

Get the latest updates from
MIT Technology Review

Discover special offers, top stories, upcoming events, and more.

Thank you for submitting your email!

Explore more newsletters

It looks like something went wrong.

We’re having trouble saving your preferences. Try refreshing this page and updating them one more time. If you continue to get this message, reach out to us at customer-service@technologyreview.com with a list of newsletters you’d like to receive.