IRISH CONSUMERS HAVE been warned that everyday devices in their homes, including so-called “dodgy boxes”, could have been compromised without their knowledge during a major global cyberattack. 

The largest volumetric Distributed Denial of Service attack was recorded last week. It reportedly saw more than 2m Android devices compromised by a botnet in 35 seconds.

The botnet, known as AISURU/Kimwolf, targets websites and servers by disrupting network services in an attempt to exhaust an application’s resources. It can delay or disrupt the application for a period of time, and hackers can infiltrate database’s and access sensitive information.

Both personal and business devices are susceptible to such attacks.

Grant Thornton Ireland said that the attack predominantly compromised Android-enabled TVs and TV streaming devices.

“Security researchers have warned that millions of low-cost, poorly secured devices around the world could be infected and remotely controlled by cybercriminals,” the firm said.

Cybersecurity partner at the firm, Howard Shortt, said a “low-cost Android TV in [someone's] sitting room or a cheap smart lightbulb can be compromised in seconds”.

“Once attackers gain access, they can use that device as part of a botnet or quietly profile the household to support more targeted and convincing phishing attacks.”

With access to the household’s activity, criminals can construct believable phishing messages. 

“For example, posing as a streaming provider with a prompt to review a show you have just watched. At that point, the scam is no longer random and much more believable,” Shortt said.

He advised the public to be proactive about their cybersecurity, starting with changing default passwords on smart devices and routers, as well as only purchasing reputable brands from legitimate vendors.