Security firm Incapsular has discovered an entire network of home and small business computers which have been infected with malware. These are then being used to become a huge botnet used in Distributed Denial of Service (DDoS) attacks.
It is thought that access has been gained because users have not changed the manufacturer’s default settings on their routers when installing them, allowing hackers to bypass log in and password details. Because of the generic nature of these details, security industry experts strongly advise that default details should always be changed and personalised when installing a new router.
The attacks are potentially coming from a group called Lizard Squad, whose DDoS-for-hire service, Lizard Stresser, does something very similar. In addition, the hacking gang has recently re-emerged on Twitter promising a new and very powerful botnet.
Generally, once access is gained, a botnet floods the compromised networks with large quantities of traffic in order to shut them down.