Marai Warning Email - And Other Issues
Hi
Yesterday I had an email from VM (genuine, my account number and name was included in the email) saying one of my devices may have been affected with the Mirai malware and I need to take action. Obviously, we don't know which one, as many of my gadgets are smart items and are connected to the internet "24/7" (though my system shuts down for 6 to 7 hours a night!).
It would be nice if possible if a time of detection was made available, as this would narrow don the culprit!
This is because on the day of the detection, I was setting up a new NAS and decommissioning my old Amahi server (as the software is outdated and not likely to be updated). This may be a culprit, though as the new NAS has a stronger firewall and was "out of the box", though with no default account details set, I doubt it would have succumbed to a malware attack so soon.
My main desktop PC was not switched on on this day. My personal laptop was, and so was my work laptop (very highly doubt that would be the culprit - the work VPN would also have a different IP address). Same with my son's school Chromebook and Nintendo Switch. Android phones and tablets have not had any new software installed apart from mine for access to the NAS from the manufacturer.
There are 2 Google Nest cams, though they are highly locked down. Same with Google Home Hubs and Google Nest Thermometer. Would it be possible for smart plug sockets to get infected? I hope it's not the ones hard wired into the wall if they are!!
That leaves just one more possible culprit, a CCTV DVR, though that currently keeps crashing as I believe the hard drive that is in it is failing. It is now currently unplugged. I think I changed it's user and password though to reduce the risk of it getting hacked though.
At the same time as all of this, I can no longer access my Virgin Media account nor an online banking account on any device attached to our network (including my phone, it's only when I switch to mobile data that I can get access). An attempt just times out. Is this linked to the above issue (i.e. has Virgin Media blocked access due to the suspected malware issue) or is it something else, i.e. the new NAS (though when testing with the NAS off and running direct, access still failed) or a broadband issue that is currently under investigation in my area? With so many things happening at the same time it's difficult to know what is the cause (though it not browser cache as the phone reconnects on network change easily, and I've tried devices which have never attempted to access these services before, hence the one post here rather than separate ones in different forum area.
Sorry for the long post and thanks in advance for your help.