{"id":9321,"date":"2017-10-25T12:28:24","date_gmt":"2017-10-25T16:28:24","guid":{"rendered":"http:\/\/avtech.com\/articles\/?p=9321"},"modified":"2025-10-24T09:29:20","modified_gmt":"2025-10-24T13:29:20","slug":"reaper-botnets-avtech","status":"publish","type":"post","link":"https:\/\/avtech.com\/articles\/9321\/reaper-botnets-avtech\/","title":{"rendered":"Reaper, Botnets, and AVTECH Security"},"content":{"rendered":"

This week it was announced that a new IoT botnet malware called Reaper<\/a> was spreading quickly around the internet, infecting over one million devices in a short period of time.<\/p>\n

What makes this botnet concerning is how sophisticated it is. Unlike the Mirai botnet which used default device passwords to spread, Reaper has the ability to crack passwords and exploit other vulnerabilities in order to infect devices.<\/p>\n

Reaper has not begun spreading any malicious traffic as of yet, but it does have the potential to trigger DDoS attacks among the internet.<\/p>\n

We wanted to discuss the impact of malware on IoT devices because once again, the malware in the news is reported to have infected IP cameras made by AVTech Taiwan, a company that shares part of our name but has no other relation to us. AVTECH Software, Inc. does not manufacture any IP cameras, however our Room Alert monitors do exist in the IoT space.<\/p>\n

\"\"<\/a>Reaper and Room Alert’s Security <\/strong><\/h3>\n

As we noted last year<\/a> when the Mirai botnet began to make news, AVTECH takes several security precautions when it comes to securing and protecting our hardware, software, and devices.<\/p>\n

Room Alert is firmly within the IoT sphere, as it\u2019s designed to send alerts and notifications to users based on the environment factors it\u2019s monitoring. Room Alert can also take automatic corrective action based on those alerts, such as turning on a water pump or fan if certain environment triggers are set up.<\/p>\n

It\u2019s important to note that although Room Alert is considered an IoT device, we\u2019ve taken a good number of steps to help protect the security of our devices and our customers.<\/p>\n

Purpose Built Firmware in Room Alert<\/strong><\/h3>\n

Room Alert PRO\u2019s firmware is purpose built, which means that it\u2019s specifically designed for Room Alert devices. One major security flaw with some IoT devices is tied into the firmware and software the devices run, as we\u2019ve seen with other botnets such as Mirai last year<\/a>. When IoT devices run common Linux operating system versions, or commonly used utilities such as Busybox, it\u2019s easier to find ways to manipulate those devices from the outside. Room Alert runs a very specific firmware that\u2019s set up to only provide the functions the devices need to monitor and report \u2013 that\u2019s it.<\/p>\n

Secure Monitoring with RoomAlert.com<\/strong><\/h3>\n

Our Room Alert Account platform offers our customers an easy and secure way to monitor and manage Room Alert. Users can see their devices, reports, alerts, and data directly within their Room Alert Account from any internet-connected device. Those reports and data are pushed directly to RoomAlert.com from their Room Alert monitor; your Room Alert Account does not push any data back to Room Alert monitors.<\/p>\n

Since traffic is only one way, from Room Alert monitors on the customer\u2019s network to RoomAlert.com, there\u2019s no need for users to open ports on their local firewalls or modify security protections. Traffic doesn\u2019t need to get in when customers use RoomAlert.com, and users don\u2019t need to worry about those additional open firewall ports adding additional potential points of entry from malicious traffic.<\/p>\n

Room Alert Doesn\u2019t Use Universal Plug and Play<\/strong><\/h3>\n

Universal Plug and Play, commonly referred to as UPnP, is a protocol that\u2019s widely used in internet-connected devices to make them easy to set up, and also allows them to discover other devices on their local networks to \u201ctalk to\u201d. This protocol has been identified as a major vulnerability when it comes to outside malicious traffic, and has been recommended to be disabled in many instances<\/a>.<\/p>\n

Room Alert does not use UPnP to connect itself to other local network devices or RoomAlert.com for remote monitoring. Again, as we noted above Room Alert monitors use custom firmware and are designed to provide one-way traffic to our RoomAlert.com platform, the preferred way to monitor your Room Alert monitors. By not using UPnP, we\u2019ve removed one major way IoT devices can be exploited by malicious users and traffic.<\/p>\n

Heightened Security in the Age of IoT<\/strong><\/h3>\n

\"\"<\/a>Room Alert users around the world should rest assured that their environment monitors are strongly protected against intrusion or infection from outside sources. AVTECH Software, Inc. has always had an eye on security when designing Room Alert monitors, Device ManageR, and RoomAlert.com. We try to be as proactive as possible when it comes to ensuring user security, and have always done so.<\/p>\n

If you find yourself the user of any of the affected manufacturers such as Linksys, Dlink, AVTech Taiwan, and others<\/a>, please take a few moments to research the security updates that may be available for your devices. Many manufacturers have already started releasing updates that address the vulnerabilities.<\/p>\n

Thanks to the design features noted above, AVTECH\u2019s Room Alert is not one of the IoT devices potentially affected by Reaper. This does not mean that you should neglect other devices on your network, however. Always be proactive with your security, just as you are with your environment monitoring. Protect yourselves against intrusion, hacking, and environment-caused downtime, and your organization will enjoy increased uptime and productivity.<\/p>\n

Note: The former GoToMyDevices online monitoring and management platform was migrated into RoomAlert.com in December 2017. For more information, please see our announcement article and FAQ<\/a>. <\/em><\/p>\n","protected":false},"excerpt":{"rendered":"

This week it was announced that a new IoT botnet malware called Reaper was spreading quickly around the internet, infecting over one million devices in a short period of time. What makes this botnet concerning is how sophisticated it is. Unlike the Mirai botnet which used default device passwords to spread, Reaper has the ability […]<\/p>\n","protected":false},"author":7,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"ngg_post_thumbnail":0},"categories":[20],"tags":[36,47,65,93],"yoast_head":"\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\t\n\t\n\t\n