70% of all devices and components that are part of the Internet of things ecosystem are unsafe as they contain potential leaks and are bound for attacks, claims a new research conducted by HP.
The rise of the Internet of things trend is set to expand the number of connected devices exponentially, and Research firm Gartner even cites that in 2020 the number of connected units will be 26 billion. But this expansion has its negative side: more devices that are less secured and easy to break in to, new types of malwares and DoS attacks and the hacking of weak passwords.
The researchers of the IT department of the IT giant, based in part on the purchased company Fortify, Scanned 10 popular internet of things devices, including connected mobile and cloud apps. The devices checked ranged from TVs, internet cameras, sprinkler systems to door alarms and locks. They found 250 problematic points – 25 security vulnerabilities in average for each device.
The main security problems that were found were threats on privacy, since companies collect personal data of users, like names, e-mail addresses, living addresses, birth dates, credit card details and health information; The ability for remote operating of devices without restrictions since 80% require passwords that are not long and complex enough; The lack of encryption within those devices, that led to sensitive data being transferred out in the open; Un-secured internet interfaces, allowing potential attackers to easily take control over devices; And non functional security programs – 60% of devices do not use encryption when downloading software updates.
The report is concluded by the HP experts writing that “In order to protect devices from the dangers that arise as a result of the internet of things trend, organizations need to implement an inclusive security scheme, end to end, in order to spot vulnerabilities before they’re being used by attackers.”