The FBI is warning owners of smart devices – from televisions and thermostats to security cameras and even children’s toys – to be on alert for a stealthy scam that can siphon funds and hijack internet connections. The agency’s Internet Crime Complaint Center (IC3) has identified three key indicators that suggest cybercriminals may have compromised household devices.
These warning signs include a sudden, unexplained increase in internet data usage, unexpectedly high internet bills, and a noticeable slowdown in WiFi connection speeds, according to a recent FBI notice. The agency stated that cyber actors are actively exploiting vulnerabilities in Internet of Things (IoT) devices to use them as intermediaries for malicious internet traffic, effectively masking cyberattacks and network exploitation.
The FBI has long been aware that hackers target and covertly commandeer poorly secured smart home devices, disguising their illicit activities by making it appear as though the traffic originates from the victim’s residence rather than the attacker’s. When devices are compromised, they become part of a “botnet”—a network of infected devices remotely controlled by cybercriminals.
According to the FBI, hackers don’t necessarily require victims to click on phishing emails or download suspicious links to gain access. Many devices are shipped with default passwords, such as “admin” or “1234,” which owners often fail to change. Outdated firmware, the software that controls a device, can also create security vulnerabilities that hackers exploit. Some devices even ship with previously unknown security flaws, known as zero-day vulnerabilities, that manufacturers like Apple or Samsung are unaware of until discovered by malicious actors.
The first sign of a potential compromise, the FBI says, is a significant increase in data consumption. Malware infecting a device forces it to send or receive large amounts of traffic, whether it’s spam emails, attacks on other websites, or communication with the hackers’ command servers. This activity routes through the victim’s internet connection and IP address, providing anonymity to the criminals and inflating data usage.
An unexpectedly high internet bill, particularly if the provider charges extra for exceeding data limits, is a direct consequence of increased data usage and a second key indicator. The FBI advises disconnecting the suspicious device and reporting the incident to the IC3 website if this occurs.
The third warning sign, a slowdown in device performance, can be easily overlooked as a simple connectivity issue. But, malware running in the background constantly consumes processing power, memory, and bandwidth, causing the device – and potentially the entire home WiFi network – to become sluggish and unresponsive.
The FBI recommends regularly rebooting devices, as most malware resides in memory and is removed upon restarting. “It is important to do this regularly as many actors compete for the same pool of devices and use automated scripts to identify vulnerabilities and infect devices,” the agency explained. Regularly changing default passwords and keeping device software up to date are also crucial preventative measures.
The IC3 serves as the FBI’s central hub for collecting reports of cyber-enabled crime, and anyone who believes they have been affected is encouraged to file a complaint with the IC3. Crimes against children or threats of terrorism should be reported to the National Center for Missing and Exploited Children or tips.fbi.gov, respectively.
Leave a Reply