Probing for IoT weaknesses?
I've noticed quite a few HEAD / HTTP/1.0 requests sent to my home internet. The requests vary in frequency and source/destination IP/Port range. I realize the request itself isn't a DOS attack since the information returned is minimal. It does however include what web server and version you are running, if any.
Since every IoT device has some sort of web server I believe that miscreants are using bots to send these requests and recording the responses. They probably have a database of known web server exploits and may likely follow up with an attempt to hack into whatever device they have an exploit for.
You may think I'm being paranoid but we all now how shite IoT security is.
Thoughts?
Biting the hand that feeds IT
