{"id":275047,"date":"2021-06-15T15:00:16","date_gmt":"2021-06-15T12:00:16","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/"},"modified":"2021-06-15T15:00:16","modified_gmt":"2021-06-15T12:00:16","slug":"iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/","title":{"rendered":"#IoT Devices Could Be the Weak Link in Your Cybersecurity \u2013 CloudSavvy IT"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a2400dc36b12\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a2400dc36b12\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/#The_Myth_of_IoT_Security\" >The Myth of IoT Security<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/buradabiliyorum.com\/en\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/#Limited_Computational_Power\" >Limited Computational Power<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/buradabiliyorum.com\/en\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/#Old_Operating_Systems_and_a_Lack_of_Updates\" >Old Operating Systems and a Lack of Updates<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/buradabiliyorum.com\/en\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/#Poor_Physical_Security\" >Poor Physical Security<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/buradabiliyorum.com\/en\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/#Insecure_Communication_Protocols\" >Insecure Communication Protocols<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/buradabiliyorum.com\/en\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/#How_to_Secure_Your_IoT_Devices\" >How to Secure Your IoT Devices<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/buradabiliyorum.com\/en\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/#Change_Passwords\" >Change Passwords<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/buradabiliyorum.com\/en\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/#Keep_off_the_Open_Internet\" >Keep off the Open Internet<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/buradabiliyorum.com\/en\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/#Beware_of_Auto-Connecting\" >Beware of Auto-Connecting<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/buradabiliyorum.com\/en\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/#Disable_All_Unnecessary_Features\" >Disable All Unnecessary Features<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/buradabiliyorum.com\/en\/iot-devices-could-be-the-weak-link-in-your-cybersecurity-cloudsavvy-it\/#Stick_to_Security-Oriented_IoT_Manufacturers\" >Stick to Security-Oriented IoT Manufacturers<\/a><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n<p><strong>&#8220;#IoT Devices Could Be the Weak Link in Your Cybersecurity \u2013 CloudSavvy IT&#8221;<\/strong><\/p>\n<div id=\"article-content-area\">\n<figure style=\"width: 2240px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"type:primaryImage wp-image-11927 size-full\" data-pagespeed-lazy-src=\"https:\/\/www.cloudsavvyit.com\/p\/uploads\/2021\/05\/241daf9c.png?width=1198&amp;trim=1,1&amp;bg-color=000&amp;pad=1,1\" alt=\"iot devices\" width=\"2240\" height=\"1246\" src=\"https:\/\/www.shutterstock.com\/image-photo\/internet-things-iot-concept-businessman-presses-508997860\" data-credittext=\"Shutterstock\/Panchenko Vladimir\" onload=\"pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\" onerror=\"this.onerror=null;pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\"\/><figcaption class=\"wp-caption-text\"><span class=\"type:primaryImage imagecredit\"><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.shutterstock.com\/image-photo\/internet-things-iot-concept-businessman-presses-508997860\">Shutterstock\/Panchenko Vladimir<\/a><\/span><\/figcaption><\/figure>\n<p>The increasing use of IoT devices in a business setting isn\u2019t all bad. They help improve staff\u2019s productivity, optimize limited resources, and even automate some mundane, background tasks. But all the benefits still don\u2019t negate the dangers that they pose to your business.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"The_Myth_of_IoT_Security\"><\/span>The Myth of IoT Security<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>After decades of digitizing all aspects of security, claiming that people are the weakest link\u2014and they still are\u2014it\u2019s easy to turn a blind eye to IoT networks because they\u2019re <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/technology\/\" data-internallinksmanager029f6b8e52c=\"4\" title=\"Technology\" target=\"_blank\" rel=\"noopener\">technology<\/a>-based. But replacing physical tasks with remote gadgets and devices that do them better isn\u2019t always a flawless solution.<\/p>\n<p>You can think of implementing additional IoT devices and networks to a business, like adding more doors to your offices. The more entryways that you have, the more locks, keys, and security cameras you\u2019re going to need to keep them in check.<\/p>\n<p>But while that\u2019s all well and good with devices designed to support cybersecurity, like laptops, tablets, and desktop devices, IoT devices are like paper-thin doors with a plastic lock\u2014you can\u2019t rely on the manufacturer\u2019s security features for protection. Drastic changes are needed.<\/p>\n<p>Over the past couple of years,\u00a0<a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/cisomag.eccouncil.org\/nearly-70-percent-of-organizations-globally-suffered-iot-attacks-survey\/\">70% of organizations worldwide suffered from an IoT-based cyberattack,<\/a>\u00a0the most notable incident being the casino\u2019s database that was hacked through a fish tank thermometer. This wasn\u2019t a case of using fancy tech or wiring the thermometer to stealthily gain access to the network. The <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>roach was relatively straightforward because the thermometer was an IoT device connected to the internet and the casino\u2019s internal network.<\/p>\n<p>In addition to the negligence that often leaves IoT devices vulnerable to attacks, they weren\u2019t manufactured with security in mind in the first place. They\u2019re made for productivity and convenience.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Limited_Computational_Power\"><\/span>Limited Computational Power<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Most IoT devices are designed to accomplish a handful of tasks at best. Since the tasks are often quite simple and don\u2019t require a lot of computational power, manufacturers don\u2019t bother strengthening their device\u2019s capacity to keep the price point reasonable. However, proper security measures often need adequate computation power to function.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Old_Operating_Systems_and_a_Lack_of_Updates\"><\/span>Old Operating Systems and a Lack of Updates<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Since the required function of the IoT device doesn\u2019t change over time, most manufacturers don\u2019t bother continuously sending operating system updates to the device. This leaves them vulnerable to both old and new methods of attacks without the ability to patch gaps.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Poor_Physical_Security\"><\/span>Poor Physical Security<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Attackers won\u2019t even have to breach the IoT device itself to access your network if they can have access to the device itself. Unlike staff laptops and tablets that carry sensitive files and data, IoT devices aren\u2019t as heavily guarded and often get left unsupervised in remote locations for long stretches of time. The lack of physical security measures leaves the device at a high risk of tampering\u2014through sabotaging the device or directly installing malware or spyware through one of its ports.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Insecure_Communication_Protocols\"><\/span>Insecure Communication Protocols<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Most IoT devices don\u2019t use secure communication protocols when transferring data between the device itself, its cloud service, and your company\u2019s main network. For instance, some man-in-the-middle (MITM) attacks take advantage of insecure key exchange practices to intercept and access data during transfer.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"How_to_Secure_Your_IoT_Devices\"><\/span>How to Secure Your IoT Devices<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>In spite of all the downsides of using IoT devices, they don\u2019t necessarily mean foregoing them and their benefits altogether just yet. There are multiple approaches that you can take to securing IoT devices and minimizing the risks, ranging in complexity and significance.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Change_Passwords\"><\/span>Change Passwords<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>This seems like an obvious first step, but\u00a0<a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/internetofbusiness.com\/password-iot\/\">47% of IT managers<\/a>\u00a0don\u2019t change the default passwords and settings of IoT devices upon connecting them to their internal network. The same rules that apply to account and devices passwords should be used on IoT devices:<\/p>\n<ul>\n<li>Change the password every 30 to 90 days.<\/li>\n<li>Use a complex mix of random letters, numbers, and symbols in varying cases in passwords.<\/li>\n<li>Use two- or multi-factor authentication.<\/li>\n<li>Use a password manager\u2014or forgo written passwords\u00a0altogether\u00a0for passwordless logins.<\/li>\n<li>Avoid sharing passwords among employees through insecure communication channels.<\/li>\n<\/ul>\n<h3><span class=\"ez-toc-section\" id=\"Keep_off_the_Open_Internet\"><\/span>Keep off the Open Internet<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>IoT devices can only do their job properly if they\u2019re connected to a bigger network or a device or cloud that it can report back to. However, it\u2019s best to keep IoT devices strictly connected to your internal network instead of the open internet. That\u2019s because, according to\u00a0<a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.netscout.com\/sites\/default\/files\/2019-02\/SECR_001_EN-1901 - NETSCOUT Threat Intelligence Report 2H 2018.pdf\">NETSCOUT\u2019s Threat Intelligence Report<\/a>, IoT devices get attacked approximately five minutes after being connected to the internet.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Beware_of_Auto-Connecting\"><\/span>Beware of Auto-Connecting<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Most IoT and smart devices have the auto-connect option to a network switched on by default. While this, in itself, is a security risk to the average person, it could increase the risk of an IoT-sourced cyberattack for companies and corporations.<\/p>\n<p>Approximately two-thirds of global organizations found over 1,000 personal and IoT devices connected to the company\u2019s network. And unlike company-issued IoT services, you can\u2019t ensure that all of them have had the necessary improvements made to their security.<\/p>\n<p>In addition to setting up a barrier preventing any unauthorized device from connecting to the network, consider implementing a monitoring system. You could use it to keep a close eye on all your device\u2019s health and to alert you if anything is out of the ordinary, like unusual data flow.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Disable_All_Unnecessary_Features\"><\/span>Disable All Unnecessary Features<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Most IoT devices come with a number of default settings turned on that work toward convenience and productivity instead of security. Upon adding a new IoT to your network, go through its settings and additional features and disable anything that isn\u2019t of use. Any type of data or additional service that the device offers can be an underlying security vulnerability.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Stick_to_Security-Oriented_IoT_Manufacturers\"><\/span>Stick to Security-Oriented IoT Manufacturers<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Software updates aren\u2019t as frequent when it comes to IoT devices. And when they do happen, they often focus on improving the user interface and implementing a new feature or two. By only sourcing IoT devices from security-oriented companies, you can ensure that their regular updates also include a security update and a report of fixed bugs and vulnerabilities.\n<\/p><\/div>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/technology\/\" target=\"_blank\" rel=\"noopener\">Technology category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/www.cloudsavvyit.com\/11505\/iot-devices-could-be-the-weak-link-in-your-cybersecurity\/\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;#IoT Devices Could Be the Weak Link in Your Cybersecurity \u2013 CloudSavvy IT&#8221; Shutterstock\/Panchenko Vladimir The increasing use of IoT devices in a business setting isn\u2019t all bad. They help improve staff\u2019s productivity, optimize limited resources, and even automate some mundane, background tasks. But all the benefits still don\u2019t negate the dangers that they pose&#8230;<\/p>\n","protected":false},"author":1,"featured_media":275048,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.cloudsavvyit.com\/p\/uploads\/2021\/05\/241daf9c.png","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[],"class_list":["post-275047","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/275047","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=275047"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/275047\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/275048"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=275047"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=275047"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=275047"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}