Botnets are a network of infected computers, or bots, under the control of a single party, known as “botnet master”. Hackers infect computers with malware that allows them to remotely operate infected devices as bots. A botnet master can command every device from one central point to perform a coordinated attack. Some botnets consist of thousands — or sometimes, even millions — of infected devices.
Mirai is a malware that turns networked devices into remotely controlled bots. IoT devices are a prime target for Mirai malware. Mirai malware is capable of infecting all connected devices on an IoT network. A Mirai botnet herder can command any number of devices such as webcams, DVRs, IP cameras, and routers.
Botnet herders use botnets to perform automated attacks including application DDoS, and account takeover.
Application DDoS: Fraudsters deploy botnets on web properties of online businesses. Botnets slow down web and mobile applications and affect critical business functions. Botnet attacks exhaust and damage servers, applications, and database resources.
Account Takeover: Fraudsters deploy botnets to perform credential stuffing and brute force attacks. Attackers use stolen credentials to gain account access, execute unauthorized, and steal PIIs.