The 'Internet of Things' as a Security Risk
In the interview, Hay identifies three risks associated with Internet of Things devices connected to an enterprise network:
- Creating a new attack vector: Consumer-oriented IoT devices can be manipulated to give hackers new avenues to exploit enterprise networks remotely.
- "Keeping bad company": IoT devices could be linked to cloud services that could be controlled by untrustworthy hosts, which might not promptly patch vulnerabilities, resulting in compromised user credentials, exposure of personal information or revelation of trade secrets.
- Facilitating new vulnerabilities: Installing on enterprise networks minimally secured, relatively cheap consumer gadgets - so-called "toys in the attack" - creates new avenues for remote exploitation.
No comments:
Post a Comment