Sunday, Dec 17 2017 | Updated at 06:23 PM EST

Stay Connected With Us F T R

Feb 15, 2017 08:34 AM EST

A university was attacked by hackers using vending machines and other IoT devices connected to its network. The case was brought to light by Verizon. Network World reported that an unnamed university featured in Verizon's sneak peek of the 2017 Data Breach Digest Scenario. The issue escalated because the school's help desk had initially blown off the complaints of students about the network connectivity, which was either slow or inaccessible.

According to Verizon's article, the university's IT Security Team continued to receive an increasing number of complaints from students. The team discovered that the name servers, which were responsible for Domain Name Service (DNS) lookups, were creating high-volume alerts and had an abnormal number of sub-domains related to seafood.

With this, while the servers struggled to keep up with the volume, legitimate lookups were being ignored. This resulted to a prevention of access to the Internet and explained the "slow network" issues.

What was more worrying, however, was the source of the unusual DNS lookups and its scale. The university's IT team did a firewall analysis and found that more than 5,000 discrete systems were making hundreds of DNS lookups every 15 minutes. Moreover, majority of the systems were found to be in the part of the school's network focused on its IoT infrastructure.

The university had connected everything that can be connected to its network from light bulbs to vending machines for easier management and monitoring. These IoT systems should have been isolated from the rest of the network but they were all configured to use DNS servers in a different subnet.

The school's RISK (Research, Investigations, Solutions and Knowledge) team revealed that the botnet spread from several devices by "brute forcing default and weak passwords." Once it had the device's password, the malware already had full control of the IoT device.

Universities and colleges need to be vigilant of this type of vulnerability since they will continue to use IoT devices. Mashable noted that, currently, there are over 6 billion IoT devices that are running. That figure is expected to reach over 20 billion by 2020.

Follows university, Hack, Hackers, attack, vending machines, issues, Cybersecurity, IT, tech
© 2017 University Herald, All rights reserved. Do not reproduce without permission.

Must Read

Here is NASA’s Take On Anonymous Hackers Alien Claims [VIDEO]

Jun 28, 2017 AM EDTNASA official says no alien has been found until today.

International Cyber Attack Strikes Again: Ransomware Hits Companies Worldwide [VIDEO]

Jun 28, 2017 AM EDTOver 2,000 computers in about a dozen countries were affected.

The Magic of Celebrity Involvement: How Projects and Concepts Get Public Nod When Icons Get Involved [VIDEO]

Jun 28, 2017 AM EDTDo celebrities really affect marketing?

Student Loans In Focus: How Much Do Students Really Borrow To Attend The Top 10 Schools [VIDEO]

Jun 26, 2017 AM EDTFor most students, going into the Top 10 schools is a dream come true. But is the expense in studying in these schools worth it?