ITPro Today, September 6th, 2018
When it comes to internet of things security issues, the FBI is getting serious. The FBI recently issued a warning that Internet-connected devices are particularly vulnerable to cybercrime. The alert explained that bad cyber actors are actively searching out and exploiting internet of things (IoT) devices (also called smart devices), especially those with weak authentication, unpatched firmware or other software vulnerabilities, or default usernames and passwords. They are then using the devices as proxies to send spam e-mails, muddle network traffic, mask internet browsing, generate click-fraud activities, and sell or lease IoT botnets to other cyber actors for financial gain, among other malicious activities.
Today, there are more and more types of Internet-connected devices—not only home appliances, but routers, IP cameras, DVRs and network-attached storage, or NAS, devices. While it might seem somewhat unlikely to include NAS devices in the category of potentially targeted systems, it actually makes a lot of sense, says Greg Schulz, senior advisory analyst with StorageIO.
“Even if the networked storage is on a separate network for data access than those used by IoT devices, infected data could get in from a compromised device if an IoT device is set up to access a NAS file, or object and blob storage,” he explained.