New Publicly Available Hacking Tool, AutoSploit, Creates Risk for Internet-Facing Systems and Devices
Unsecured and vulnerable internet-facing systems and devices are at risk of attacks conducted through the use of AutoSploit, a newly released and publicly accessible hacking tool designed to automate and simplify the remote exploitation of such exposed technology. AutoSploit combines several automation tools and workflows, such as Metasploit and Shodan, creating a low barrier to entry for unskilled hackers seeking to quickly and easily conduct cyber-attacks against targets. This automated program reduces the amount of time and expertise typically needed to attack a large number of systems at once. The NJCCIC assesses with high confidence that the availability of this tool combined with its ease of use will entice hackers of various skill levels to conduct attacks against a large number of vulnerable, exposed systems in the near future. We strongly recommend members audit their networks as soon as possible to determine what systems and devices are exposed to the internet as well as to identify any open and unsecured ports. For systems and devices that require remote access, we recommend changing any default login credentials that may be present, ensuring that software and firmware are patched and up-to-date, implementing a multi-factor authentication solution for remote accounts, employing IP address whitelisting, and/or automatically blocking IP addresses after a set number of failed login attempts.