IoT Attacks Archives - Page 2 of 2

Are Internet of Things Devices Safe to Use?

Internet of things, IOT, IoT Attacks, Ophtek, SecurityInternet of Things, IoT, Ophtek, passwords, securityOphtek, LLC

Apr 2019

The Internet of Things (IoT) has revolutionized the way we connect and interact with physical devices, but is this new technology as secure as it should be?

Clearly, with around 26 billion associated devices estimated to be in use during 2019, the IoT needs to be secure due to the amount of data being transmitted. However, as the IoT is a relatively recent phenomenon, it’s no surprise that so many headlines are warning against the dangers of this technology. Naturally, this kind of scenario can cause concern for organizations that are looking to get on board with the numerous IoT benefits on offer, but should you really be worried about the security risk?

What is the Internet of Things?

The basic premise of the IoT is a lot simpler than you would imagine: using internet connections, physical devices can communicate with one another while also being remotely controlled and maintained. So, for example, if you want to control the lighting in your office, you could use a remote application to adjust the lighting from, if necessary, from anywhere in the world. And all you need is an active internet connection for the app to connect to the device.

What are the Safety Risks of IoT Devices?

As we’ve mentioned, there are certain dangers attributed to IoT devices that can seriously threaten the security of your devices and any data transmitted by them. Some of the more pressing risks include:

Default Login Credentials: Many IoT devices are sent out with default login credentials, so this means that the username and password details will be exactly the same for every single one of those devices sold. And it doesn’t take long for hackers to begin sharing details of this vulnerability with their fellow hackers. A ccordingly, changing default login credentials to a more unique configuration should be the first thing you do before connecting such a device to your networks.

Unnecessary Features: Sometimes, IoT devices are packed with a wide range of features that are completely unnecessary for your organization’s needs. The most common example of this is the option of remote access which, for many in-house IoT devices, simply isn’t necessary as all it does is open up a pathway to your network for hackers. Therefore, make sure that only the most relevant features are activated on your IoT devices.

Patching IoT Devices is Difficult: Due to the wide variety of manufacturers making IoT devices, many of these companies simply don’t have the technical knowledge to release regular and effective patches. And this represents a major security risk due to the constant efforts of hackers to exploit security vulnerabilities. In these instances, the best way to prevent a breach is to monitor these less secure devices for any unusual network activity. This approach should, at least, indicate if there is a potential security breach in progress.

Final Thoughts

Although there are a number of very real security risks associated with integrating IoT devices into your organization’s IT network, these don’t have to convert into a major security breach. Instead, these risks can be significantly reduced by following the advice listed above which will protect your network and keep all your IoT devices interacting with it seamlessly.

For more ways to secure and optimize your business technology, contact your local IT professionals.

Cryptojacking Malware Rises by 4000% in 2018

cryptocurrency, cryptojacking, Internet of things, IoT Attacks, Ophtek, spam emailcryptojacking, Internet of Things, IoT, spam emailOphtek, LLC

Jan 2019

McAfee have reported that instances of cryptojacking malware have risen by a massive 4000% over the course of 2018 and are now a major security risk.

As the interest in cryptocurrencies such as Bitcoin and Ethereum has soared in the last couple of years, so has the interest in exploiting these opportunities for ill-gains. In particular, hackers have become increasingly fixated on the financial rewards available from mining cryptocurrency. Now, there’s nothing remotely illegal about mining cryptocurrency. In fact, it’s a lucrative business, but it’s also one that requires a significant amount of processing power from multiple PCs. And this is where hackers turn to underhand methods to generate this processing power.

Given this massive rise in cryptojacking activity, it’s likely that your organization will be targeted in the near future and it’s essential that you know what you’re dealing with, so let’s try to get a handle on it.

The Rise of Cryptojacking

The first quarter of 2018 saw cryptojacking activity increasing by 629% according to McAfee and a later report by Kaspersky has suggested that cryptojacking is now, in some countries, a bigger threat than ransomware. And, despite the relatively low processing power, hackers are increasingly targeting Internet of Things (IoT) devices to harness the power required to mine cryptocurrency successfully. You may wonder why IoT devices are being targeted, but the reasons are very simple: low levels of security and high volumes of online devices.

Cryptojacking’s rise in popularity can also be put down to the fact that it’s highly discreet compared to conventional malware and ransomware. Whereas those two forms of hacking will produce very obvious symptoms such as stolen data and encrypted files, cryptojacking malware runs quietly in the background. There will, of course, be a drop in the processing capabilities of an infected PC, but an average PC user will usually put this down to the age of the PC or a server problem. As a result, cryptojacking malware can flourish with little chance of being detected.

How is Cryptojacking Executed?

There are two main ways in which cryptojacking malware is able to execute its malicious payload:

Spam emails that contain a malicious link that, once clicked, download cryptomining software onto the victim’s PC.
Infected websites or ads that automatically install cryptomining software once the victim’s browser loads them up.

Detecting and Avoiding Cryptojacking

The drop in processing power that cryptojacking malware can levy on your organization’s PCs could seriously threaten your productivity. Therefore, it’s vital that you understand the warning signs of cryptojacking and how to protect your organization from such attacks.

The main warning sign of cryptojacking taking place is a drop in your CPU power. Any noticeable slowdown in productivity such as apps struggling to complete basic tasks should be investigated immediately. While it will take an IT professional to identify exactly what’s draining the PCs power, any PC user should be able to identify the slowdown.

When it comes to protecting your organization’s PCs from cryptojacking then you need to adhere to the following:

Good in-house education on the dangers of malicious links contained within emails
Install extensions in browsers that block mining software
Turn off JavaScript as this is frequently used by webpages to install cryptojacking software
Ensure correct security practices relating to IoT devices are followed

For more ways to secure and optimize your business technology, contact your local IT professionals.

The 5 Most Important IoT Security Concerns Coming in 2018

Cyber Attack, Hacking, Internet of things, IOT, IoT Attacks, malware, Phishing, Ransomware, Security, Security ThreatsIoT Attacks, passwords, ransomware, security, vulnerabilityOphtek, LLC

Feb 2018

If you want to keep the IoT (Internet of Things) secure in 2018 then you’re going to have your work cut out due to the number of threats on the horizon.

Significant progress has been made in the last couple of years when it comes to understanding the security concerns presented by IoT devices, but this is only encouraging hackers to become more innovative. And 2018 is going to deliver more IoT security threats than ever before, so you’re going to need to be ready for this surge in activity and the new hacking methods employed.

Let’s take a look at the most pressing IoT security concerns coming in 2018.

IoT Attacks Being Undetectable

Many IoT attacks take place on a micro scale compared to large scale attacks such as Distributed Denial of Service Attacks. The problem with micro attacks is that conventional security systems are unlikely to recognize them as a threat, whereas major attacks are likely to ring alarm bells very quickly. Therefore, investing in highly sensitive security systems and manual monitoring may become vital to any organization using IoT devices.

Automation Will Become More Important

Some organizations can have thousands of IoT devices operating on their network at any one time, so manually monitoring this activity is virtually impossible. And that’s why automation and artificial intelligence could prove highly popular in 2018 when it comes to providing a front line defence against IoT attacks e.g. installing crucial firmware upgrades immediately.

The Irresistible Allure of Cryptocurrency

You only have to take a quick look at the financial headlines to understand just how valuable cryptocurrencies are at the moment. And, to a hacker, the financial rewards on offer are hard to resist. The Satori botnet, for example, takes control of IoT devices and also allows the hackers to exploit Bitcoin mining software. So, if your organization is involved with cryptocurrencies in any capacity, it’s going to pay to monitor your activity very closely.

More and More Devices Will Be Targeted

Automobiles, security cameras and baby monitors are just a small selection of the IoT devices which have been hacked in the last couple of years, but this is set to increase further in 2018. In particular, devices which come with weak passwords (or even no password) are constantly being scouted by hackers. And, when they discover one, this can easily be leaked online, so the need to enforce a strong password culture remains essential.

Privacy Concerns

Trusting IoT devices to transmit and receive personal and sensitive data is going to come under serious scrutiny in 2018. Due to the recent IoT attacks which have exploited weak passwords and poor security protocols in IoT devices, the public concern is growing over how their data is handled. Naturally, hackers are excited by the prospect of being given a free run at such a huge number of vulnerable devices without adequate security frameworks in place. 2018, therefore, is going to find organizations having to soothe customer concerns by only working with secure hardware and software.

For more ways to secure and optimize your business technology, contact your local IT professionals.

« Previous 1 2

Category Archives: IoT Attacks

What is the Internet of Things?

What are the Safety Risks of IoT Devices?

Final Thoughts

The Rise of Cryptojacking

How is Cryptojacking Executed?

Detecting and Avoiding Cryptojacking