April 18-19, 2018Boston, MABoston Convention and Exhibition Center

ESC Boston 2018 Schedule Viewer

Use the scheduling tool below to browse all the available sessions, speakers and topics at this year's event. Find the content and sessions to fit all of your educational needs and ensure you get the most out of your time at the show.

The IoT Botnet Wars, Linux Devices & the Absence of Basic Security Hardening


Drew Moseley (Technical Solutions Engineer, Mender.io)

Location: 107B

Date: Thursday, April 19

Time: 10:00am - 10:45am

Pass type: Conference (Paid) - Get your pass now!

Free Content & Activities: N/A

Conference Track: IoT and Connected Devices , Embedded Software Design & Verification

Vault Recording: TBD

Audience Level: N/A

In this session we will discuss the various malware infecting Linux IoT devices including Mirai, Hajime, and BrickerBot, and the vulnerabilities they leverage to enslave or brick connected devices. We will walk the audience through specific vectors they used to exploit devices and cover some basics in security hardening that would have largely protected from many of the widespread malware.

Some of the fundamental security concepts we will cover include:
• Closing unused open network ports
• Intrusion detection systems
• Enforcing password complexity and policies
• Removing unnecessary services
• Frequent software updates to fix bugs and patch security vulnerabilities

We will also delve into the arguments and counter-arguments of vigilante hacking with Hajime and BrickerBot as examples and the potential long-term consequences in this new age of connected devices.


This presentation will help the embedded development community understand real-world security risks in bringing their devices online and what specific measures to take to help defend their devices.