Cyber security isn’t just about social media passwords and credit card information anymore. More and more everyday devices are being created that include built-in Web connectivity. According to Cisco, there will be 50 billion Web-connected devices in use worldwide by the end of the decade. The list includes everything from medical devices, to home automation, smart appliances and even connected vehicles.
Having our everday lives so digitally connected to the wider world, opens up a whole host of new opportunites for hackers, many of which would have been inconceivable just a few years ago. According to a new study released by HP, as many as 70% of the Web-connected devices currently on the market are vulerable to attack. As part of the study, HP Security Research reviewed 10 of the most popular Internet of Things devices, including connected TV’s, webcams, home thermostats, remote power outlets, sprinkler controllers, home automation systems and garage door openers. The results werre troubling to say the least.
“90% of devices collected at least one piece of personal information via the devices, the cloud or its mobile appliation.”
“70% of devices used unencrypted network services.”
“70% of devices, along with their cloud and mobile applications, enable an attacker to identify valid user accounts through account enumeration.”
“80% of devices along with their cloud and mobile application components failed to require passwords of a sufficient complexity and length.”
Web Interface Problems
“60% of devices that provide user interfaces were vulnerable to a range of issues such as persistent XSS and weak credentials.”
Are you still using “password” as your password for all your applications? Do I need to say STOP IT?