This sounds like some kind of DDOS attack like the ones that involved connected light bulbs. Malware gets into the light bulb or washing machine and repurposes the infected device to flood targeted servers:
I have an LG washer and dryer on my IoT VLAN and funneled through a pi hole. I’ve been pleasantly surprised at how quiet and well behaved they are on my network. Hardly ever phone home and only connect to one or two domains. Something is seriously wrong with his dudes washer.
The most noisy devices on my network are my smart TVs. The last time I bothered to look, it wasn’t even close to comparable.
My phone is my most used device. It had something in the ballpark of 800 blocked requests in a day, after an entire day of doomscrolling and heavy use. It was the third most blocked device on my network, behind both of my smart TVs. The “better” TV had ~2400 blocked requests in that same day. The worse one had nearly 3000.
Crypto mining would be symmetrical up/down though. This is only a small amount of data downloaded, and a huge amount uploaded. That looks more like a botnet attack, where an attacker hacked the machine and pointed it at a target, then just left it to run.
This sounds like some kind of DDOS attack like the ones that involved connected light bulbs. Malware gets into the light bulb or washing machine and repurposes the infected device to flood targeted servers:
https://www.sciencealert.com/here-s-what-we-know-about-the-massive-cyber-attack-that-took-down-the-internet-on-friday
Obligatory meme wisdom:
https://biggaybunny.tumblr.com/post/166787080920/tech-enthusiasts-everything-in-my-house-is-wired
I have an LG washer and dryer on my IoT VLAN and funneled through a pi hole. I’ve been pleasantly surprised at how quiet and well behaved they are on my network. Hardly ever phone home and only connect to one or two domains. Something is seriously wrong with his dudes washer.
The most noisy devices on my network are my smart TVs. The last time I bothered to look, it wasn’t even close to comparable.
My phone is my most used device. It had something in the ballpark of 800 blocked requests in a day, after an entire day of doomscrolling and heavy use. It was the third most blocked device on my network, behind both of my smart TVs. The “better” TV had ~2400 blocked requests in that same day. The worse one had nearly 3000.
I hadn’t even used my TVs that day.
some software keeps resending requests when they don’t go through, so if you didn’t block them, the number could’ve been much, much lower.
of course it’s stupid and fuck that, but still.
Roku enabled by chance? I have 2 of them plugged in on my IOT space and have 54K blocks to scribe.logs.roku.com in the past 30 days.
Either that or it’s mining crypto
Crypto mining would be symmetrical up/down though. This is only a small amount of data downloaded, and a huge amount uploaded. That looks more like a botnet attack, where an attacker hacked the machine and pointed it at a target, then just left it to run.
Imagine the poor bastard who gets arrested for their washing machine ddos’ing people.
In and out is not high in crypto mining. It’s mostly a cpu/power hog.
Just like a parasyte lol