October was National Cyber Security Awareness Month in the US and Europe and we saw many campaigns from vendors and experts on how individuals and companies can protect themselves against cyber-crime. Unfortunately in the same month, we saw a massive DDoS attack spurred by hacked IoT devices which shut down a good part of the internet for much of the day. Get the scoop, plus a recap of other IoT stories from last month, below.
The World in IoT Security for October Can Pretty Much Be Wrapped in with One Major Event….the DDoS Attack on DNS Provider Dyn
Remember the DDoS attack on security guru Brian Krebs’ website we highlighted last month? The source code for “Mirai,” a network of internet-connect cameras and other IoT devices, is readily available for hackers. Surprise! Mirai was used for a large scale attack, this time targeting DNS provider Dyn and cutting off access to some of the internet's most trafficked websites.
The US Government Is Not Quite Ready to Intervene When It Comes to IoT Security
Naturally, after the wide-scale DDoS, security experts had a lot to say. For example, U.S. Senator Mark Warner, said recently that he favors an industry-based approach before seeking some form of regulation of IoT security from the government. Warner has been addressing insecure IoT devices for a while with past letters to the FTC and most recently with to the FTC again and the Department of Homeland Security and the FCC.
Why Are So Many Industrial Companies Hesitating on IIoT Security?
The industries that IDC predicts will spend the most on IoT solutions are manufacturing, transport, energy and utilities, and retail, with a wide range of IoT use cases. So, why is there a delay in implementing IIoT security? A heavy focus on standards, exorbitant expected costs and the fear of big changes are all cited as reasons for not pursuing IIoT projects. This article takes a look at each of these reasons in more detail.
Three Minutes – That Is the Time It Generally Takes for an Intruder to Hack Most Consumer IoT Devices
A ForeScout report reveals seven types of IoT devices that can be hacked in three minutes; Kamkar's real hack shows the dangers. Devices that renowned hacker Samy Kamkar identified are IP-connected security systems, smart HVACs and energy meters, VoIP phones, connected printers, videoconferencing systems, smart light bulbs and smart refrigerators.
Looking Ahead to 2017, in Cybercrime There Will Be a Fresh Wave of Ransomwave and IoT Hacks
So far in 2016, there were over 90 million cyberattacks. With the growth of the Internet of Things bringing self-driving cars, smart grids, new gadgets and thousands of other innovations, new threats will emerge in 2017 according to Sameer Dixit, Senior Director of Security Consulting at cybersecurity firm Spirent.
If you find any of these topics interesting, we would love to discuss them with you on Twitter. Share your thoughts with us using the hashtag #IoTNewsWrap.