Notwithstanding the excitement about the possible benefits of the
Internet of Things, a slew of warnings have been sounded by IT pros, vendors
and analysts about looming security threats. Now you can add the FBI to that
list of those cautioning enthusiasts.
The Bureau this week issued a public service announcement
regarding cybercrime opportunities posed by the connecting of all sorts of
data-enabled devices, from medical gear to entertainment gadgets, to the
Internet.
"As more businesses and homeowners use web-connected devices
to enhance company efficiency or lifestyle conveniences, their connection to
the Internet also increases the target space for malicious cyber actors,"
the FBI warns. "Similar to other computing devices, like computers or
Smartphones, IoT devices also pose security risks to consumers."
The FBI cites "deficient security capabilities and
difficulties for patching vulnerabilities in these devices, as well as a lack
of consumer security awareness," with giving cybercrooks an opening to
plot attack and steal information.
The Universal Plug and Play protocol (UPnP) is particularly
vulnernable, as are devces with default passwords and open Wi-Fi connections,
the FBI states.
FBI recommendations for protection include:
1.
Isolating IoT devices on
their own protected networks;
2.
Disabling UPnP on routers;
3.
Considering whether IoT
devices are ideal for their intended purpose;
4.
Purchasing IoT devices from
manufacturers with a track record of providing secure devices;
5.
When available, updating IoT
devices with security patches;
6.
Being aware of the
capabilities of the devices and appliances installed in your homes and
businesses.
7.
Using strong passwords.
Source:
No comments:
Post a Comment