DEMO
You are viewing a demo with synthetic data.to connect your own infrastructure.
< Back to Battle Room

Edge Device Botnet Recruitment

resolved
Attacker Type
AUTOMATED TOOL
Confidence
93%
Kill Chain
Initial Access
Events
8,900
CRS Score
38
Elapsed
15s

EVENT TIMELINE

medium06:00:00

Mirai-variant brute force across 142 IoT devices

info06:00:15

CIE: All brute force attempts blocked in 15s

ATTACK NARRATIVE

A Mirai-variant botnet attempted mass recruitment of IoT edge devices. The Edge Agent detected the default credential brute force pattern across 142 devices and blocked all attempts within 15 seconds. Firmware updates were pushed to patch the targeted vulnerability. Zero devices were compromised.

Affected Assets

edge-sensor-floor-01edge-sensor-floor-02edge-gateway-bldg-a

Agent Layers Involved

edgenetwork

PREDICTED NEXT MOVES

01Brute force remaining edge devices
02Deploy DDoS payload
03Establish C2 over Tor

Pre-Blocked Paths

BLOCKEDBrute force remaining edge devices
BLOCKEDDeploy DDoS payload
BLOCKEDEstablish C2 over Tor

COUNTER-ACTIONS EXECUTED

Blocked brute force across 142 edge devices
06:00:15
100%
Pushed firmware updates to patch vulnerability
06:01:00
100%