-=> Deavmi wrote to Mro <=-
De> I guess so. But how would IoT re-appear in disguise or is it the bigger
De> picture of privacy issues coming as fads, like first cloud computing,
De> then IoT?
Well, the IoT manufacturers are repeating the mistakes of others before them,
like wifi router manufacturers, who for a long time supplied their gear with a
default password and no wifi security. Before mobile Internet became
affordable, it was a common ploy to drive around with a copy of Netstumbler
until you found an open network (didn't take long in those days!). If you were
courteous, you'd just download your email and leave, if not, maybe surf the web
or leech a few files. Of course, some people did put these open networks to
more nefarious uses.
Today, it's a lot less common to see an unsecured wifi AP (unless it's a public
hotspot), and mobile Internet is cheap enough anyway, so it's not worth the
hassle.
later came the various attacks on home routers, by accessing them using their
default password, and then messing with the configuration (e.g. redirecting DNS
to a bogus server that you control, so you can serve up malware, etc).
Router manufacturers and ISPs eventually woke up, and the routers came with
wifi security turned on and either a unique password or they forced one to
choose a new password on first login. Some ISPs even configured the router for
the customer, before shipping it.
Now we come to IoT. Here we have a new generation of insecure devices
repeating the same mistakes (such as well known default passwords), and now we
have malware targetting these devices as easy recruits for a botnet.
*sigh*
... Disk Failure: (W)arm Boot, (C)old Boot, (S)teel Toe Boot?
--- MultiMail/Win32 v0.49
■ Synchronet ■ Freeway BBS in Bendigo, Australia.
|
