Computer security: Spam in the fridge
“THE internet of things” is one of the buzziest bits of jargon around in consumer electronics. The idea is to put computers in all kinds of products—televisions, washing machines, thermostats, refrigerators—that have not, traditionally, been computerised, and then connect those products to the internet.
If you are in marketing, this is a great idea. Being able to browse the internet from your television, switch on your washing machine from the office or have your fridge e-mail you to say that you are running out of orange juice is a good way to sell more televisions, washing machines and fridges. If you are a computer-security researcher, though, it is a little worrying. For, as owners of desktop computers are all too aware, the internet is a two-way street. Once a device is online, people other than its owners may be able to connect to it and persuade it to do their bidding.
On January 16th a computer-security company called Proofpoint said it had seen exactly that happening. It reported the existence of a group of compromised computers which was at least partly comprised of smart devices, including home routers, burglar alarms, webcams and a refrigerator. The devices were being used to send spam and “phishing” e-mails, which contain malware that tries to steal useful information such as passwords.
The network is not particularly big, as these things go. It contains around 100,000 devices and has sent about 750,000 e-mails. But it is a proof of concept, and may be a harbinger of worse to come—for the computers in smart devices make tempting targets for writers of malware. Security is often lax, or non-existent. Many of the computers identified by Proofpoint seem to have been hacked by trying the factory-set usernames and passwords that buyers are supposed to change. (Most never bother.) The computers in smart devices are based on a small selection of cheap off-the-shelf hardware and usually run standard software. This means that compromising one is likely to compromise many others at the same time. And smart devices lack many of the protections available to desktop computers, which can run antivirus programs and which receive regular security updates from software-makers.
Ross Anderson, a computer-security researcher at Cambridge University, has been worrying about the risks of smart devices for years.
The Latest on: Compromised computers
via Google News
The Latest on: Compromised computers
- 2 from Calif. indicted in W. Pa. computer scamon May 13, 2022 at 5:44 pm
School accidentally sells Mother's Day roses with thong inside: ‘Unfortunate mistake' According to the indictment, the two suspects are related by marriage and worked to infiltrate computers to ...
- Personal info of hundreds compromised by Elgin County cyber-failureon May 13, 2022 at 4:57 pm
Personal information about more than 300 people, some of it highly sensitive, was compromised by a "cyber-security incident" that knocked out Elgin County's website and email system for nearly a month ...
- Ukrainian Sentenced to US Prison for Selling Hacked Credentialson May 13, 2022 at 3:47 am
A Ukrainian national has been sentenced to four years in a US prison for decrypting stolen usernames and passwords and selling them on a dark web marketplace. The man, Glib Oleksandr Ivanov-Tolpintsev ...
- Ukrainian cybercriminal gets four years for selling hacked passwords on dark webon May 12, 2022 at 2:11 pm
According to court officials, the Marketplace offered more than 700,000 compromised servers for ... controlled a “botnet,” a network of computers infected with malware and controlled as ...
- PARTING SHOT: About that transformational 'computer' ageon May 12, 2022 at 9:00 am
I have spent 24, 27 and 36 minutes, respectively, waiting for a page to open on my computer. I have also been asked to change my ...
- Russia hacked an American satellite company one hour before the Ukraine invasionon May 11, 2022 at 1:21 pm
Just an hour before Russian troops invaded Ukraine, Russian government hackers targeted the American satellite company Viasat, officials from the US, EU, and UK said today. The operation resulted in ...
- British man charged in New York with hacking into bank computers, stealing millionson May 10, 2022 at 12:00 pm
A British man has been criminally charged in New York with stealing money from investors' accounts by hacking into email servers and computers belonging to U.S. banks and brokerages, causing more than ...
- Authorities investigate as Belton Police Department computers hit with malware attackon May 6, 2022 at 1:44 pm
Encrypted malware prevented access to certain digital files and other services used by department employees, the police chief said Friday.
- What to Do If Your Instagram Account Gets Hackedon May 5, 2022 at 1:19 pm
Attackers may use automated computer programs to change your log-in credentials ... If the steps above failed, head to Instagram’s help page for hacked accounts. Assuming the hacker already changed ...
- Former employee accused of hacking customers’ computerson May 5, 2022 at 8:58 am
After leaving Sound Concepts on “less than ideal terms,” Brian Paul Jackson reportedly told detectives he would “randomly use the phone app to turn off lights and manipulate the lighting systems for ...
via Bing News