Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

​Understanding the Internet of Things

114 views

Published on

This is a talk I gave in St. Louis in April 2018 about how businesses need to understand the Internet of Things and how they can better protect themselves.

Published in: Technology
  • Be the first to comment

  • Be the first to like this

​Understanding the Internet of Things

  1. 1. David Strom April 2018
  2. 2. http://strominator.com 3
  3. 3. http://strominator.com 4
  4. 4. Agenda • What is the IoT, really? • Notable recent IoT security disasters • What makes these devices unsafe • It isn’t just what you have in your home or business • What you can do to be more secure
  5. 5. Sample IoT devices
  6. 6. Notable IoT Security Disasters
  7. 7. Internet-connected hard drives WD My Cloud Drive c. 2018
  8. 8. HP JetDirect c. 1991 IoT Security, then and now
  9. 9. What a simple webcam can do now
  10. 10. IoT and the cloud
  11. 11. What are these words?
  12. 12. What makes devices unsafe? • Insecure firmware • Or lousy updates of your firmware • Operating system bugs (Windows esp.) • Bad coding practices by device makers • Application insecurity • Physical security: like that fishtank
  13. 13. What is wrong with devices Many devices have no security whatsoever: Once you know the device’s IP address, game over
  14. 14. Many privacy issues • Device passwords often ignored – or sometimes can’t be changed • Device permissions rarely monitored • Devices can be used to launch network-based attacks and spread malware • Device firmware rarely upgraded or tracked
  15. 15. Suggestions to sleep better
  16. 16. Search for security issues before you buy an IoT device
  17. 17. Change all device passwords – today!
  18. 18. Buy your own firewall/router device for your home network
  19. 19. Secure your home Wifi network
  20. 20. Upgrade your firmware regularly
  21. 21. Use a password manager
  22. 22. For further reading • https://www.hpe.com/us/en/insights/articles/9-ways- to-make-iot-devices-more-secure-1701.html • https://www.theguardian.com/world/2018/jan/28/fitn ess-tracking-app-gives-away-location-of-secret-us- army-bases • https://www.bleepingcomputer.com/news/security/ab out-90-percent-of-smart-tvs-vulnerable-to-remote- hacking-via-rogue-tv-signals/ • (Network printers) https://blog.strom.com/wp/?p=5751
  23. 23. (c) 2018 David Strom Inc. http://strominator.com 39 David Strom, david@strom.com strominator.com Subscribe to my newsletter: inside.com/security These slides can be found here: http://slideshare.net/davidstrom

×