Cyber criminals are exploiting vulnerabilities on Internet of Things (IoT) devices in an increasing number of distributed denial of service (DDoS) attacks. In a recent DDoS attack, remotely controlled IoT devices believed to be infected with Mirai malware were used as part of a botnet to take down a domain name system (DNS) company. This attack affected many organizations indirectly by making their websites or services inaccessible to their customers. The attack involved routers, digital video recorders, webcams, and internet-enabled cameras that were infected by the Mirai malware.
To avoid being a victim of future attacks, organizations need to verify how IoT devices are implemented and kept secure.
Here are our top five security recommendations for your IoT devices:
If you believe one of your IoT devices may be compromised, take the device offline, reboot it, add strong authentication, and put it back online. The malware resides in dynamic memory and is removed after the reboot. However, if the IoT device is brought back online before adding strong authentication, the malware likely will reinfect the device.
In accordance with applicable professional standards, some firm services may not be available to attest clients.
© 2017 Crowe Horwath LLP, an independent member of Crowe Horwath International.
As of June 1, 2016, the professionals of AbleBridge have joined Crowe Horwath LLP, a public accounting, consulting, and technology firm. We continue our focus on Microsoft Dynamics® CRM (now Dynamics 365) sales and implementation as well as innovative add-on products.
The personnel of SDGblue have joined Crowe Horwath LLP, a public accounting, consulting, and technology firm with a global risk consulting practice and offices around the world. This move provides SDGblue clients access to a broader range of products, services, and solutions, while expanding the Crowe cybersecurity risk management capabilities with a deeply specialized team.
Looking for the Client Login?
Access the SDGblue Client Portal
As of Oct. 30, 2017, the professionals of Rowbotham International have joined Crowe Horwath LLP, a public accounting, consulting, and technology firm. We continue our focus on domestic and international tax and audit compliance services, as well as advisory services.