Researchers have discovered critical security flaws in connected smart plugs which can give attackers access to a full home network — as well as your email account. Craig Young, Security Researcher at Tripwire commented below.
Craig Young, Security Researcher at Tripwire:
“This is entirely unsurprising to anyone who’s been paying attention to the IoT market. Often times these devices do not use authentication at all and when they do it is commonly hardcoded or generated with an insecure algorithm. Product vendors in this space may have expertise when it comes to making hardware but it seems that they lack experience with respect to designing software. IoT security is in its infancy with vendors repeating the many mistakes made by software developers in the 90s. This is quite a serious problem however as more and more devices represent not just an infosec risk but can also present personal safety risks. What would happen to our power grid if millions of Internet connected outlets were compromised and then all triggered to turn on and off devices at the same time?”
Most Commented Posts
2020 Cybersecurity Landscape: 100+ Experts’ Predictions
Cyber Security Predictions 2021: Experts’ Responses
Experts’ Responses: Cyber Security Predictions 2023
Celebrating Data Privacy Day – 28th January 2023
Data Privacy Protection Day (Thursday 28th) – Experts Comments
Most Active Commenters
Recent Comments
A worrying trend for Australians The Latitude Financial attack clearly…
It is not unusual for companies to keep hold of…
“First of all, it should be praised that Ferrari have…
These findings aren’t very surprising given that unpatched zero-days provide…
These figures from Mandiant highlight how attackers are continuing to…