Computer security: Spam in the fridge
“THE internet of things” is one of the buzziest bits of jargon around in consumer electronics. The idea is to put computers in all kinds of products—televisions, washing machines, thermostats, refrigerators—that have not, traditionally, been computerised, and then connect those products to the internet.
If you are in marketing, this is a great idea. Being able to browse the internet from your television, switch on your washing machine from the office or have your fridge e-mail you to say that you are running out of orange juice is a good way to sell more televisions, washing machines and fridges. If you are a computer-security researcher, though, it is a little worrying. For, as owners of desktop computers are all too aware, the internet is a two-way street. Once a device is online, people other than its owners may be able to connect to it and persuade it to do their bidding.
On January 16th a computer-security company called Proofpoint said it had seen exactly that happening. It reported the existence of a group of compromised computers which was at least partly comprised of smart devices, including home routers, burglar alarms, webcams and a refrigerator. The devices were being used to send spam and “phishing” e-mails, which contain malware that tries to steal useful information such as passwords.
The network is not particularly big, as these things go. It contains around 100,000 devices and has sent about 750,000 e-mails. But it is a proof of concept, and may be a harbinger of worse to come—for the computers in smart devices make tempting targets for writers of malware. Security is often lax, or non-existent. Many of the computers identified by Proofpoint seem to have been hacked by trying the factory-set usernames and passwords that buyers are supposed to change. (Most never bother.) The computers in smart devices are based on a small selection of cheap off-the-shelf hardware and usually run standard software. This means that compromising one is likely to compromise many others at the same time. And smart devices lack many of the protections available to desktop computers, which can run antivirus programs and which receive regular security updates from software-makers.
Ross Anderson, a computer-security researcher at Cambridge University, has been worrying about the risks of smart devices for years.
The Latest on: Compromised computers
via Google News
The Latest on: Compromised computers
- Computer programmer hacked more than 30 websites for bitcoins in drug caseon November 26, 2020 at 8:56 pm
Sandeep Patil said that the accused Srikrishna aka Shreeki has hacked nearly 30 websites which mainly deal with bit-coins ...
- Computer programmer hacked more than 30 websites for bitcoins in a drug caseon November 26, 2020 at 1:44 pm
The Bengaluru central crime branch police were reportedly stunned by the "hacking skills" employed by the 25-year-old computer programmer who was arrested last week. Joint police commissioner (Crime), ...
- FBI joins investigation into computer system hack in Delaware County, Pennsylvaniaon November 25, 2020 at 12:26 pm
Action News has learned that the FBI has now joined a criminal investigation into who hacked the Delaware County, Pennsylvania government computer system.
- Employees at Florida Lowe’s hacked payroll, stole nearly $12,000 from other workers, investigators sayon November 24, 2020 at 7:41 am
Two employees at a Florida Lowe’s hacked the store’s payroll and stole nearly $12,000 from other associates, investigators said.
- Tesla Hacked and Stolen Again Using Key Fobon November 24, 2020 at 3:59 am
Belgian researchers demonstrate third attack on the car manufacturer’s keyless entry system, this time to break into a Model X within minutes.
- Over 300K Spotify accounts hacked in credential stuffing attackon November 23, 2020 at 12:07 pm
Hackers have been attempting to gain access to Spotify accounts using a database of 380 million records with login credentials and personal information collected from various sources.
- Tesla Model X gets hacked through new relay attack, Tesla says it is pushing a patchon November 23, 2020 at 11:11 am
A hacker managed to develop a new key cloning relay attack for Tesla vehicles and demonstrated it on a Tesla Model X. Tesla was informed of the new attack and it is reportedly pushing a new patch for ...
- Tesla Model X hacked and stolen in minutes using new key fob hackon November 23, 2020 at 9:57 am
Tesla is rolling out over-the-air software updates this week to prevent the attack from hijacking owner key fobs.
- Tesla Model X key fobs could be hacked to steal cars, fix releasedon November 23, 2020 at 9:54 am
Researchers at the University of Leuven in Belgium found vulnerabilities in the keyless entry system of the Tesla Model X that would have allowed attackers to steal the $100,000 car within just a few ...
- Researchers Hacked And Stole A Tesla Model X In Just Minuteson November 23, 2020 at 9:13 am
Security researchers from a Belgian university figured out how to break into a Tesla and drive away in true Hollywood hacker fashion.
via Bing News