Articles about internet of things

US authorities swallow security-free script for pill that knows when you're off your meds

What could possibly go wrong when drug companies embed into a pill, so that after you swallow it connects to a smartphone app and then sends data over the internet? The question is urgent as the United States Food and Drug Administration (FDA) this week approved a thing-in-a-pill, in the form of an antipsychotic called …
Couple shocked by something on a smartphone

Stop your moaning, says maker of buggy Bluetooth sex toy

Sex-toy maker Lovsense has told its customers to stop moaning about one of its products, which recorded audio of users as they – ahem – played, and stored it on their Android phones. News of the recording emerged on Reddit where an entity by the name of “tydoctor” wrote “control vibrator app (used to control remote control sex …
Simon Sharwood, 13 Nov 2017
People diving off a cliff

C'mon, edgelords: The APIs are ours to command – do we do good or evil?

Edge computing is the pendulum swinging away from the idea of big, centralised servers back to distributed systems. It's the idea that instead of centralising all of our workloads in big clouds we bring the computing closer to the devices requesting that compute power. The idea is that edge computing solves whole new classes …
Trevor Pott, 31 Oct 2017

Updating Things: IETF bods suggest standard

A trio of ARM engineers have devoted some of their free time* to working up an architecture to address the problem of delivering software updates to internet-connected things. Repeated IoT breaches – whether it's cameras, light bulbs, toys or various kinds of sex toys – have made it painfully clear that too many Things aren't …
Man peers into fridge with odd look on his face. Photo by shutterstock

Australia's IoT security rating might work, if done right

INTERVIEW As Vulture South reported Monday, Australia's government hopes to have consumer Internet of Things products given security “star ratings” of some kind, so consumers know what they're buying. The notion seems problematic: for example, what does a five-star security rating on a security camera mean, if it's attached to a router …

'Cyber kangaroo' ratings for IoT security? Jump to it, says Australia's cyber security minister

Australia's government hopes that somewhere in the world, a vendor of consumer-grade connected electronics is willing to admit it's rubbish at security by giving itself a low score in a proposed safety rating system. The idea of security ratings for internet things emerged during last year's 360° Cyber Security Game, co-hosted …
Mattel Aristotle PR image

Mattel's Internet-of-kiddies'-Things Aristotle canned before release

Mattel's Aristotle, a kid's-Alexa-only-more-creepy, won't get the chance to invade children's bedrooms after all: the company's cancelled it. CTO Sven Gerjets didn't tell the Washington Post why the product did not “fully align with Mattel's new technology strategy”, only that the decision was made after he reviewed the …
Washington University sensor as a skin patch

Chirpy, chirpy, cheap, cheap: Printable IoT radios for 10 cents each

One of the favoured low-power radio techniques in Internet of Things research is “backscatter communications”: the transmitter sends a signal to a Thing, and the Thing modulates its data onto the reflection, and that's then decoded by a receiver. The problem with such a passive comms scheme is that its distance is limited to …
Face Palm D'oh from Shutterstock

Dangle a DVR online and it'll be cracked in two minutes

Criminals are constantly attempting to log into digital video recorders by using their default credentials, the SANS Institute has found. The organisation revisited recorders because their lack of security helped the Mirai botnet run riot in October 2016, thanks to its modus operandi of logging into devices using their default …
Simon Sharwood, 29 Aug 2017

Dahua cameras stung by Web interface bug

Chinese camera-maker Dahua has flicked out a patch to fix a possible remote code execution vulnerability in its Web admin interface. The company uses a Web interface named as “Sonia”* in this CERT advisory – and there's a stack buffer overflow to fix. Unpatched, the advisory states, various versions of the Dahua firmware don' …
soap

'Millions of IoT gizmos' wide open to hijackers after devs drop gSOAP

Security researchers investigating internet-connected video cameras have uncovered a bug that could conceivably leave millions of devices open to easy pwnage. The team from embedded security specialists Senrio was looking into the code running an M3004-V network camera from Axis Communication. They found a serious hole in the …
Iain Thomson, 19 Jul 2017

YASA* looks at turning commercial buildings into Internet things

A vendor collective pushing Internet of Things standardisation for commercial buildings has published its first set of specifications, and wonder-of-wonders the specs include security. In evidence that the world's fast running out of tortured names that don't sound stupid in English or funny/obscene in other languages, the …
Image by Danomyte http://www.shutterstock.com/gallery-256714p1.html

AGFEO smart home controllers need patching

Smart-home controllers from German company AGFEO have adopted best practice internet things security by offering an unsecured Web admin interface. The now-patched attack vectors included unauthenticated access to some services, authentication bypass, cross-site scripting (XSS) vulns, and hard-coded cryptographic keys. The …
European flag with sad face

EU security think tank ENISA looks for IoT security, can't find any

European network and infosec agency ENISA has taken a look at Internet of Things security, and doesn't much like what it sees. So it's mulling a vendor's nightmare that the US and UK dared not approach: security regulation - at least the minimal regulation of testing and certification. In a position paper published Monday, …

O2 will be carrying out UK IoT connectivity trials later this year

Exclusive British telco O2 is the first to publicly confirm that it will be trialling 3GPP-compliant Internet of Things connectivity tech in the UK later this year. Although the telco would not be drawn on specifics, it told The Register it would be trialling "3GPP cellular IoT [Internet of Things] technology" this year. This is a …
Gareth Corfield, 22 May 2017
shutterstock_282226826-Internet-of-things

IoT needs security, says Microsoft without even a small trace of irony

Still reeling from criticism over the WannaCrypt attack, Microsoft has stuck its hat on a stick and raised it out of the trench to see how its proposals for Internet of Things security might be received. Since IoT security is almost uniformly awful, it's probably a good thing that the creator of Windows XP Embedded wants to …
Overflowing dishwasher shutterstock

Dishwasher has directory traversal bug

Don't say you weren't warned: Miele went full Internet-of-Things with a network-connected dishwasher, gave it a web server, and now finds itself on the wrong end of a security bug report – and it's accused of ignoring the warning. The utterly predictable vulnerability advisory on the Full Disclosure mailing list details CVE- …
oneweb

Look who's bailed out internet-satellite provider Intelsat? It's... Softbank?

Comment Softbank has arrived as the unlikely white knight to save Luxembourg-based internet-satellite provider Intelsat from running out of cash. It has injected debt funding and proposed a merger through its LEO satellite firm OneWeb. Now bondholders for Intelsat must give the deal the go-ahead. The deal came just as Intelsat …
Faultline, 7 Mar 2017

Create a news alert about internet of things, or find more stories about internet of things.

Biting the hand that feeds IT © 1998–2017