The Internet of Things and all of it’s ‘Things’

The Internet of Things is the collection of physical devices connected to the Internet for control and feedback purposes. We have long passed the age where the only things connected to the Internet were computers and smartphones. Modern homes can have a myriad of objects connected to or accessible from the Internet. Smart TVs, video game consoles, thermostats, door locks, vehicles, even refrigerators and light bulbs are on the menu. For modern businesses, there are even more devices. Smart feedback connections in HVAC systems, hi-tech security systems such as alarms and cloud-based cameras, and point of sale equipment are commonly connected to the Internet. Manufacturing companies have entire machining platforms connected to networks for sending data and reading production & machine health feedback.

The IoT does this wonderful thing where productivity can be maximized and managed in real time. A company can immediately see where time or material is being wasted and make changes faster than ever. A homeowner can access their music and play games or watch rich media that never would have been available without the Internet. It’s estimated that by 2025, there will be over 1 trillion devices connected to the Internet.

All of This Convenience Comes at a Price

Before the IoT, our biggest concerns in cyber security were protecting computers and smartphones. Educating your user base and good virus protection software was mostly all that was needed to prevent data breaches. The Internet of Things has changed all of this. With a much greater attack surface to work with, hackers are increasingly using IoT devices as entryways to a victim’s network. The 2013 hack of the retail giant, Target, was a result of stolen credentials used to monitor their HVAC systems.

More recently, in October of 2016 many popular sites such as PayPal, Twitter, & Netflix were taken down by a DDoS attack launched not from infected computers (as is usually the case), but from hundreds of thousands of IoT devices. These devices included closed-circuit TV cameras, DVRs, & routers.


The IoT Doesn’t Have to be an Infosec Nightmare

It’s no secret that in many cases, the coolness factor outweighs security. A product which is difficult to use will never make it to the market. Because of this, many IoT devices come with hard-coded default passwords. Additionally, manufacturers rarely release software updates and in the rare instances that they do, there’s little notification to the consumer that updates are available.

For end-users and consumers, protecting yourself from hackers on the Internet of Things starts with some of the same tactics used to protect your computers – change your default passwords. Every device should have a unique password that differs from the manufacturer default. The DDoS attack that took down Twitter, PayPal, & Netflix was possible because the IoT devices used were accessed using default manufacturer passwords.

For manufacturers of IoT devices, security must be taken into account from the first design steps. This, in fact, could become law as the DHS has now opened the door for lawsuits against manufacturers for not providing basic security protocols in devices that make up the Internet of Things. In order to facilitate cybersecurity, the makers of IoT devices must provide regular security updates for the lifecycle of their products. Since this is currently not the norm, it’s up to the consumers to be educated and only purchase those devices that meet the standards.

The power to change always lies with the consumer. Do your research before buying an IoT device such as a smart TV. Make sure you’re buying one that’s secure and gets updates from the manufacturer regularly. If the one you want doesn’t offer that, get a different one and make a habit of filling out those post-purchase surveys so that manufacturers are aware of why consumers make their decisions.

New Business Opportunities Straight from the IoT

As is always the case, when there’s a need, someone will come along to fill that need. Companies like Tempered Networks use special switches specifically designed to cloak IoT devices in an additional layer of security. Using granular controls, these products allow IoT devices to perform their intended actions across the Internet while remaining hidden from probes coming from unapproved locations.

Ultimately, the consumers have the power to change the Internet of Things by choosing those devices which are secured properly and doing the work to secure them. The future lies in which consumers are going to adapt, and which are going to choose to do nothing and get hacked.


 

Sharif Jameel

Sharif Jameel is a business owner, IT professional, runner, & musician. His professional certifications include CASP, Sec+, Net+, MCSA, & ITIL and others. He's also the guitar player for the Baltimore-based cover band, Liquifaction.

10 Comments

Margarito · December 17, 2016 at 2:26 am

It’s genuinely very complex in this full of activity life to listen news
on TV, so I simply use internet for that reason, and take the most up-to-date information.

Bill · December 18, 2016 at 4:52 pm

Greetings! Very useful advice within this post!

It’s the little changes that produce the most important
changes. Thanks a lot for sharing!

whatsmyip.org · December 25, 2016 at 9:41 pm

Oh my goodness! Impressive article dude!
Many thanks, However I am going through problems with your RSS.
I don’t understand why I am unable to join it.

Is there anybody else having the same RSS issues? Anyone that
knows the solution can you kindly respond?

Thanx!!

http://www.growingthangs.com/ · December 26, 2016 at 5:06 pm

Amazing issues here. I’m very happy to see your article.
Thank you a lot and I am looking forward to touch you.
Will you please drop me a e-mail?

Karolin · December 27, 2016 at 12:33 am

Great blog! Do you have any hints for aspiring writers?
I’m hoping to start my own blog soon but I’m a little lost
on everything. Would you recommend starting with a free
platform like WordPress or go for a paid option? There are so many options out there that I’m completely overwhelmed ..
Any suggestions? Many thanks!

    Sharif Jameel · December 27, 2016 at 8:38 am

    If you’re just getting started, use a free platform such as WordPress. If you decide to go big with it, you can export the entire WordPress and move it to your own site later.

christian · December 27, 2016 at 2:59 am

Very good write-up. I absolutely love this site.

Continue the good work!

Ana Sandra · February 12, 2017 at 11:21 pm

OMG I never thought about my TV getting hacked! That’s scary AF!

    Sharif Jameel · February 12, 2017 at 11:23 pm

    You’re correct, it is scary. And it’s going to remain that way until manufacturers of these devices really start incorporating security into them.

Leave a Reply