• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

Is 2018 Finally the Year Security Regulations Get Applied to IoT Devices?

December 11, 2017 By The Editor

paperwork regulation

Security expert Bruce Schneier published an essay last year that called IoT device security a form of “invisible pollution,” where there’s no market incentive for device manufactures to build more secure products. This is why we saw several major DDoS attacks in 2017 powered by IoT botnets like Mirai and Reaper that relied on a huge number of insecure devices like webcams, digital video recorders and smart light bulbs. If these attacks continue to grow in severity in 2018, when will we hit the breaking point and impose some regulations on IoT devices?

WatchGuard threat analyst, Marc Laliberte recently wrote a column on this topic for Help Net Security. Based on how attacks like Reaper have improved on early botnet malware like Mirai, Marc predicts that an extremely effective botnet attack will hit sometime in 2018, and it will cause enough damage to force a major government into implementing IoT device regulation. Here’s an excerpt from the article explaining what these regulations might look like.

That’s hard to say with certainty (what these regulations would include), but the most likely scenario would involve minimum security requirements for IoT device manufacturers. Easy targets would be ensuring remote access through Telnet or SSH is disabled by default (or removed entirely), barring the use of hard-coded passwords (or at least requiring a password change during setup), and requiring security patches to remain up-to-date, at least when the device is first shipped. These regulations would finally provide the missing incentive for manufacturers to secure their products before selling them to consumers.

Read the entire article over at Help Net Security and learn more about IoT device security on our 2018 Security Predictions.

Share This:

Related

Filed Under: Editorial Articles, Featured

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • Scratching the Surface of Rhysida Ransomware
  • An Interview with ChatGPT
  • TikTok is Banned, Kind Of
  • How Not to Update Software

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • How Not to Update Software
  • Naming APTs
  • TikTok is Banned, Kind Of
  • Scratching the Surface of Rhysida Ransomware
  • An Interview with ChatGPT
View All

Search

Archives

Copyright © 2023 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use