It appears that the Koala device is running an outdated and vulnerable SSH service. I regularly run Nessus vulnerability scans on my home network and the Koala device shows up as having a critical vulnerability - “Dropbear SSH Server < 2016.72 Multiple Vulnerabilities” Botnets like BrickerBot use this vulnerability to launch attacks. Is there a way to update to openssh or something else that is not vulnerable to attacks?
Thanks @jkw for the heads up.
The attacker needs to already be in your network to execute this, but it still needs to be addressed.
The next update will disable SSH.
The update has been released.
Your KoalaSafe will automatically update overnight and a notification will appear in the app.
You can restart the device to force an update immediately.
Great response time @adam and KoalaSafe engineering! Thanks for the heads up @jkw
Thanks for the quick turnaround. It appears that I did get the update.