WannaCry Aftermath: Is IoT Ransomware in Our Future?

The ransomware malware made a big splash by attacking PCs. Internet of Things devices could be the next targets.

Brian Buntz

May 18, 2017

3 Min Read
Wannacry could be a taste of what is to come with IoT security.

What if hackers took control of your thermostat in the middle of winter and demanded payment before you could turn the heat on? Or if threat actors held the power grid, industrial facilities, or hospitals hostage for ransom? Or what if hackers demanded payment before you could turn on your car engine or open your front door with a smart lock? 

Those are just a few of the possible future targets of IoT ransomware, where seemingly everything is becoming a connected computer—ranging from traffic lights to your microwave oven, as security expert Bruce Schneier writes in The Washington Post.

The fact that the WannaCry ransomware virus has hit more than 200,000 computers in 150 countries should serve as a wakeup call about the looming risk of IoT ransomware. If threat actors could cause so much chaos by primarily targeting personal computers, imagine the chaos they could cause by targeting IoT environments. “Who really cares about the desktop environment anymore?” asks Peter Tran, ‎GM and senior director at RSA Security.

Tran says that it could be misleading to focus solely on the money-generating potential of the WannaCry virus. While it is true that the attackers have, to date, collected some $80,000 from the attack, it is strange that only three virtual wallets were hard-coded into the malware itself. “It doesn’t make sense that an attack of this scale was purely a money-making venture,” Tran says. While it’s not clear what the attackers’ incentives were, it is possible that WannaCry is part of a “massive reconnaissance effort to see what infrastructures globally are up to par,” Tran says.

Last week, President Trump signed a cybersecurity executive order mandating a move to cloud computing to unify the federal government’s infrastructure and its security strategy. “That is exactly the kind of move I would want to see if I were an adversary,” Tran says. “I would say: ‘You just reminded me that you had a massively aging infrastructure—and I know that there are similar problems internationally, so let me just go sweep the environment to see how bad it is.”


There is a precedent for attacks like WannaCry, on a smaller scale, that were exceptionally good at winning press attention but less efficient at generating money for the hackers and prompting people to patch their computers. “The problem is, historically, when people rush to patch systems, attackers anticipate that,” Tran says. “And they know that not all patches are created equal, and not all of them are 100% effective. Often, the patch is effective against the immediate vulnerability, but it can create another hole just as if you were plugging a leaking dam and you didn’t realize there were other cracks diverted someplace else.”

The real worry with WannaCry is that it potentially gives threat actors the means to build a stronger attack infrastructure. Just like manufacturers have a supply chain infrastructure, hackers have a similar kind of infrastructure built up based on their reconnaissance and massive repositories of malware that is just sitting and waiting to be weaponized on demand. IoT ransomware, thanks to the vast and growing attack surface of the Internet of Things, is leading to an uptick in cyber intelligence from threat actors preparing for the next generation of attacks. Tran surmises: “This could be the Wild West for hacking. The big question is: Can security scale to it?” 

About the Author(s)

Brian Buntz

Brian is a veteran journalist with more than ten years’ experience covering an array of technologies including the Internet of Things, 3-D printing, and cybersecurity. Before coming to Penton and later Informa, he served as the editor-in-chief of UBM’s Qmed where he overhauled the brand’s news coverage and helped to grow the site’s traffic volume dramatically. He had previously held managing editor roles on the company’s medical device technology publications including European Medical Device Technology (EMDT) and Medical Device & Diagnostics Industry (MD+DI), and had served as editor-in-chief of Medical Product Manufacturing News (MPMN).

At UBM, Brian also worked closely with the company’s events group on speaker selection and direction and played an important role in cementing famed futurist Ray Kurzweil as a keynote speaker at the 2016 Medical Design & Manufacturing West event in Anaheim. An article of his was also prominently on kurzweilai.net, a website dedicated to Kurzweil’s ideas.

Multilingual, Brian has an M.A. degree in German from the University of Oklahoma.

Sign Up for the Newsletter
The most up-to-date news and insights into the latest emerging technologies ... delivered right to your inbox!

You May Also Like