A greater number of devices connected to the Internet and each other also means a significant increase in the number of malware that reaches these devices. This is the conclusion of Kaspersky Lab’s five-month study of threats involving the Internet of Things (IoT).
Only from January to May 2017, researchers detected 7,242 samples of malware on those devices. The number is 74% more than the total number of samples detected in the period between 2013 and 2016.
According to the scientists, the attacks already existed a few years ago, but they even boomed in 2016 with the emergence of the Mirai botnet. And there is no lack of devices to be targeted: according to Gartner data, there are more than 6 billion devices connected to the Internet on the planet.
Size is not document
Whether they are thermostats, sensors, refrigerators, garage doors, smart wristbands or even toys, these products are especially vulnerable because the firmware of each product usually does not receive as many security updates. It has standard passwords and does not receive the user’s due attention. And, once controlled, they can not only receive commands remotely but also serve as the gateway to the invasion of other electronics in the house.
On the other hand, hackers find several advantages when attacking such devices because they have low power consumption, are portable, low cost, are available on the Internet and can be configured with open source tools available for free.
The number of connected device installations in the healthcare industry is increasing consistently. According to a report by Grand View, it is estimated that globally the healthcare industry will invest about $ 410 billion in IoT devices, services and software by 2022. Along with this trend, emerged from some procedures like Medjack, in which attackers seek to compromise equipment that connects to medical devices.
In August of this year, one of the leading manufacturers of pacemakers issued a call alert to upgrade firmware to about 465,000 patients after discovering a vulnerability that gives the attacker the ability to perform different attack vectors that would have a direct health impact of patients.
It’s a trend that is far from reversible and increasing every day. This leads us to the urgency of thinking about what security measures should be taken for this type of technology.