New PumaBot Hijacks IoT Devices via SSH Brute-Force for Persistent Access

A sophisticated new malware, dubbed PumaBot, has emerged as a significant threat to Internet of Things (IoT) devices worldwide.

Cybersecurity researchers have identified this malicious software as a highly advanced botnet that exploits weak security configurations in IoT ecosystems, particularly targeting devices with exposed SSH (Secure Shell) ports.

Emerging Threat Targets Vulnerable IoT Ecosystems

By leveraging brute-force attacks to gain unauthorized access, PumaBot is designed to establish persistent control over compromised systems, posing a severe risk to both individual users and large-scale network infrastructures.

PumaBot operates with a multi-stage infection process that begins with scanning the internet for IoT devices such as routers, smart cameras, and industrial control systems that have SSH services enabled with default or easily guessable credentials.

Once a vulnerable device is identified, the malware deploys a brute-force attack, systematically attempting various username and password combinations until access is granted.

Upon ...