Search the Community
Showing results for tags 'iot'.
Found 4 results
LSW posted a topic in CybersecurityQuick and Dirty Definition: The Internet of Things (IoT) is everything else connected to the internet that is not a traditional computer or optional tool (like printers). This means watches, washing machines, refrigerators, robots, vacuum cleaners, security cameras, baby phones, BBQ thermostats, water sensors, light bulbs, pace makers, insulin injectors, cars etc. etc. etc. You may have devices you connect to the internet that makes your life easier without thinking security... the issue is, is the manufacturer thinking security? You know OS developers worry about hackers, you know your router and your PC and your Tablet and your Phone have security settings... but does that light bulb? Was the manufacturer of your coffee pot worried about security? The answer is usually no. Manufacturers of security cameras are not controlled, so their is almost no protection built in. Jogging soldiers and airman have been found to be giving away important data on our bases due to apps tracking them as the jog. Robotic vacuum cleaners are collecting data on the layout of your house and the data is being sold. I present you with a new example of this: Casino Gets Hacked Through Its Internet-Connected Fish Tank Thermometer https://thehackernews.com/2018/04/iot-hacking-thermometer.html
LSW posted a topic in CybersecurityYou might want to pass this to any soldiers you know regardless of the country. Internet of Things (IoT) people, the Internet and your friends do not need to know where you are and what your are doing. Fitness apps, GPS geo-logging on photos you take, it all gives out info bad guys do not need to know. US soldiers are revealing sensitive and dangerous information by jogging https://www.adn.com/nation-world/2018/01/28/us-soldiers-are-revealing-sensitive-and-dangerous-information-by-jogging/
For those of you using DirtectTV, there is a risk that could allow attackers access to your system and network. Zero-Day Remote 'Root' Exploit Disclosed In AT&T DirecTV WVB Devices https://thehackernews.com/2017/12/directv-wvb-hack.html I have not discussed this issue yet as it can be a tad complicated for those who have never dealt with your routers yourselves. It may be a good idea to talk to someone in "The Know" or discuss it with your ISP support team. The real issue here is IoT (Internet of Things), all the gadgets that are being developed to use the internet. The folks who create your OS generally think about security. The folks who develop your router think about security. But does the developer of all this IoT crap think about security? Did the software developer for you internet connected coffee machine, pace maker, iBarbecue thing think about security? Likely not... so time and time again researchers and bad actors have found ways to bypass the best security people thought they had by hacking a unprotected IoT device. This is another example how hackers can get into your network through your Smart TV. For those of you who like a challenge, find a way to limit your IoT things contact to your network. It needs access to the Internet, but no other devices, it needs no access to your computers or tablets and phones. This way if compromised, the attacker can't do much of anything. Another way is to replace your Router's firmware with an opensource software with something like DD-WRT. Routers can do much more for security if you understand them, but their firmware is "Simplistic" for the average user. By getting more control with other software you can create two networks, your main network and a locked down network for just IoT devices with no contact to your personal devices.
LSW posted a topic in CybersecurityIs Your DJI Drone a Chinese Spy? Leaked DHS Memo Suggests https://thehackernews.com/2017/12/dji-drone-china-spying.html This article falls into the area of IoT (Internet of Things) and how with so many things becoming connected to the internet we are losing control over what data is collected. For my point here you can drop China (although that is a concern) and concentrate on the larger picture. To you these UAVs (Un-manned Aerial Vehicles) are often little more than toys or just a hobby like RC Aircraft... but with today's technologies they can be used to pinpoint points of interest. Are any of you aware of a US Airstrike a few years ago on an ISIS headquarters? Some little putz with a smart phone took a photo of himself with his assault rifle and posted the photo online. That was picked up by intelligence and as he had not turned off tagging, the phone GPS tagged the photo and gave the US the HQ direct location and in less than 48 hours a airstrike hit it killing some high ranking commanders. In another (accidental) case years ago, a power station failed. The load must then be spread in the system causing other smaller stations to fail, their loads in turn exceeded the draw on larger nets and the cascade effect finally knocked out power grids in the upper east coast, as far west as Michigan and as far north as into Canada. Millions without power for days. Now just as an example, add these three stories together. I live near a small power center, I fly my UAV (Drones are military un-manned targets) and GPS is collected as well as the fact it is flying around a power station. A few others do the same and the adversary now knows where they are to within a few feet. They hack in, or physically break in, bring down the stations so the power defaults to other lines that then collapse and whole grids begin to fail. We can argue all day about the likelihood of this, but it is a very real threat, it is possible regardless of how unlikely you think it is. It is merely a precautionary tale. This is also not including the fact that these UAVs are collecting personal data on you. Always limit as much info going out about you as possible from any IoT, app or device.