Krebs article describes peer-to-peer weakness exposing millions of IoT devices

Posting ID 119169
Date Added: 4/26/2019
Date Modified: 4/26/2019
E-ISAC Staff

Description

This article, written by researcher Brian Krebs, describes critical security flaws that can expose security cameras and internet-capable consumer electronic devices to eavesdropping, credential theft, and remote compromise. The flaws include a weakness in peer-to-peer (P2P) communications technology and several other critical vulnerabilities. 

The flawed software was developed by China-based Shenzhen Yunni Technology and is bundled with millions of Internet of Things (IoT) devices, including security cameras and Webcams, baby monitors, smart doorbells, and digital video recorders. These types of devices are attractive to consumers because of their easy-access remote-access capabilities and ease of installation. This kind of ease of use and convenience can sometimes cost consumers in security and privacy; this article describes these in great detail.

Category Type:
Cyber Security
TLP - White
Shared Count (3)
  • E-ISAC AOO Members
  • E-ISAC Staff
  • Watch Floor