Don’t trust the Internet of Things: when smart devices leak data

A group of researchers have revealed that the Internet of Things is probably less secure than you expect.

At a talk during PrivacyCon held by the Federal Trade Commission last week, the researchers revealed that many smart devices leak private information in cleartext — with little to no effort to encrypt that data.

When the researchers reported the bug it was quickly fixed by Nest, however it’s unclear how long the hole was open before it was found.

Transmitting data in cleartext isn’t inherently bad, but it means that any ‘bad actor’ on your home or the ISP’s network could easily steal that information without all that much work.

The group studied other devices, such as a smart photo frame that communicated with the internet entirely unencrypted and a Ubi smart speaker that leaked sensor data, which could be used to track whether you were at home.

The biggest question still surrounding the Internet of Things is how secure these devices really are — though the researchers said that the Nest was one of the “more secure” devices.

Many of the creators of smart gadgets are small startups that don’t have the resources or knowledge to build out sophisticated security, leaving you wide open to attack.

There is some hope in the unified platforms that both Google and Apple provide for the Internet of Things, which would help standardize security and communication.

The problem is that right now we’re in an all-out brawl for who will own the definitive IoT platform. Until then, expect a bumpy ride.

Source : thenextweb.com