January 25, 2018 |

Secure the IoT now or Risk a Dystopian Future, Experts Warn

New F-Secure-sponsored report reveals that the security failings in today’s Internet-connected devices will only become more pervasive unless action is taken immediately. Buckinghamshire, UK — 25th January, 2018: In its current form, the Internet of Things (IoT) represents a considerable threat to consumers due to inadequate regulations regarding security and privacy, say experts interviewed by […]

New F-Secure-sponsored report reveals that the security failings in today’s Internet-connected devices will only become more pervasive unless action is taken immediately.

Buckinghamshire, UK — 25th January, 2018: In its current form, the Internet of Things (IoT) represents a considerable threat to consumers due to inadequate regulations regarding security and privacy, say experts interviewed by the Cyber Security Research Institute for the new report “Internet of Things: Pinning down the IoT” sponsored by F-Secure. Swift action is recommended to avoid a predictable descent into a dystopian future.

With the number of connected devices now likely exceeding the human population of Earth, the IoT is already nearly inescapable.* Millions of connected devices have already been compromised to be used a part of the Mirai botnet. Many consumers aren’t aware of inherent risks of their connected devices and that manufacturers often rush products to market without considering basic security requirements and settings.

“This situation could create an even more frightening scenario than the UK tabloid newspapers’ ‘phone hacking’ scandal, due to a massive adoption of insecure IoT devices,” the report states.

Even as millions of new connected devices come online every day, consumers are still generally aware that their new “smart” appliances will go online. But the lust for consumer data could change that in the future.

“Eventually almost every household device will be online, and they will largely be invisible to the end user as a smart device,” Mikko Hypponen, Chief Research Officer of F-Secure, says in the report. “They will look like dumb devices, but they will be smart devices though they won’t offer any features to the consumer because the real reason for them to be online will be for them to report home and report analytics to the company that built the device.”

Already it’s difficult to find any model of some devices, such as televisions, that do not connect to the internet.

The laws of supply and demand have not yet yielded an IoT that’s built for the future. If consumers aren’t demanding security, manufacturers will never prioritise it. But given the extraordinary dependency society is likely to develop on billions of IoT devices, governments may have to step in to demand security requirements.

In the report, Michael Barton, the Chief Constable of Durham Constabulary said: “There needs to be regulation but I’m fighting shy of heavy regulation here. You can’t sell toys with pins in them so that children are blinded. You can’t sell cars where the brakes work intermittently. Nor should you be able to sell something on the IoT that allows people’s bank accounts to be emptied.”

In addition to educating consumers about the risks of existing IoT devices as the U.S. appears ready to do**, governments also need to address the quality of technology being put in consumers’ hands and homes, the report finds. Product manufacturers should be regulated to ensure that products that come to market are not lacking in security or privacy measures.

* http://www.zdnet.com/article/iot-devices-will-outnumber-the-worlds-population-this-year-for-the-first-time/

** https://www.theregister.co.uk/2018/01/09/us_govt_cybersecurity_recommendations/

More Information

Blog – Wake-Up Call: The Time to Secure the IoT is Now

Infographic – The Connected Revolution: A Modern Snapshot

About F-Secure

Nobody knows cyber security like F-Secure. For three decades, F-Secure has driven innovations in cyber security, defending tens of thousands of companies and millions of people. With unsurpassed experience in endpoint protection as well as detection and response, F-Secure shields enterprises and consumers against everything from advanced cyber attacks and data breaches to widespread ransomware infections. F-Secure’s sophisticated technology combines the power of machine learning with the human expertise of its world-renowned security labs for a singular approach called Live Security. F-Secure’s security experts have participated in more European cyber crime scene investigations than any other company in the market, and its products are sold all over the world by over 200 broadband and mobile operators and thousands of resellers.

Founded in 1988, F-Secure is listed on the NASDAQ OMX Helsinki Ltd.
f-secure.com twitter.com/fsecureukteam | facebook.com/f-secure

F-Secure media relations
Geoff Dorrington

PR manager, F-Secure UK & Ireland

E: geoff.dorrington@f-secure.com

T: 01753 376592

 

Latest Press Releases

May 29, 2020

A start button for securing cloud-based email

F-Secure Cloud Protection for Microsoft Office 365 is built to secure inboxes as businesses move to cloud-based email services.

May 22, 2020

F-Secure becomes Premier Member of The Fiber Broadband Association’s LATAM Chapter

Helsinki, Finland – May 22, 2020: Cyber security provider F-Secure has become the newest Premier Member of the LATAM chapter of the Fiber Broadband Association – the largest and only trade association in the Americas dedicated to the pursuit of an all-fiber optic network infrastructure. As a Premier Member, F-Secure will support the organization providing […]

May 13, 2020

F-Secure UK completes study on intelligent transport system security

Research highlights threats and security challenges facing the UK’s emerging driverless transportation infrastructure.

April 30, 2020

New vulnerabilities make exposed Salt hosts easy targets

“Patch by Friday or compromised by Monday,” warns F-Secure Principal Consultant Olle Segerdahl. “That’s how I’d describe the dilemma facing admins who have their Salt master hosts exposed to the internet.” Olle’s warning is a reference to new Salt vulnerabilities (CVE-2020-11651 and CVE-2020-11652) disclosed earlier today in an F-Secure Labs advisory. Salt is open-source software […]

%d bloggers like this: