The IoT is supposed to make our lives easier, although it’s starting to look like cybercriminals are just as eager for it as consumers are. Broad-reaching attacks and wide-spread vulnerabilities on connected devices, their mobile apps and cloud services are already being revealed. In 2014, a Russian website discovered streaming live footage from nearly 10,000 private webcams, CCTV systems and even baby monitors from over 250 countries. In 2012, a security researcher demonstrated how to take control of building power systems, pressurized water heaters, a car wash, city traffic lights and windfarms.
Even the Federal Trade Commission has warned that cyberattackers could potentially hijack and misuse sensitive information recorded by the technology or that the technology could even create physical safety risks for consumers.
What are the real-world implications of always-on home automation devices? CA Veracode’s security research team tested six such devices and found a number of potentially serious vulnerabilities. The infographic below spells out three scenarios based on this research.