Skip to main content
Microsoft Security

Gil Regev Posts

Gil Regev
Section 52 at Azure Defender for IoT
Microsoft Cyber Defense Operations Center.

How to proactively defend against Mozi IoT botnet 

Mozi is a peer-to-peer (P2P) botnet that uses a BitTorrent-like network to infect IoT devices such as network gateways and digital video records (DVRs). It works by exploiting weak telnet passwords1 and nearly a dozen unpatched IoT vulnerabilities2 and it’s been used to conduct distributed denial-of-service (DDoS) attacks, data exfiltration, and command or payload execution.