Loading...

WiFi and IoT Vulnerability

Your network is susceptible to security issues, the treat gets compounded if you are using a wifi interface for your IoT devices. The world has just woken up to a wifi encryption vulnerability generally called KRACK. This leaves the majority of wifi devices and networks vulnerable to eavesdropping, traffic manipulation, and packet injection by attackers. This is caused due to a flaw in the four-way handshake used in wifi’s WPA2 security.  The flaw allows devices to be exploited by an attacker, causing them to reuse nonces and, as a result, undermine the encryption and privacy altogether. This is a large problem, it affects your home network, your phone and computers, and many IoT application in both home and industrial settings.

The impact includes:

  1. Compromised privacy even interception of sensitive information.
  2. Compromising security by attacking and breaking into devices on affected networks
  3. Impersonation and unauthorized access to industrial/other control systems
  4. Compromising connected access control and security systems
  5. Thwarting IP-based access control, as used in firewalling
  6. Infiltrating site-to-site VPNs
  7. DNS spoofing, and related potential compromise of TLS/HTTPS encryption where proper validation is not in use

According to IT professional (as per a poll that was done by Spiceworks), IoT devices are most vulnerable to wifi attacks. The survey highlights that workplace IoT devices such as smart lights and thermostats are ‘extremely vulnerable’ to Wi-Fi-based attacks, with IP-enabled appliances (49%), video equipment (42%) and electronic peripherals (40%) just as exposed. The results published say “While adoption of IoT devices is increasing in the workplace, many IT professionals are still wary of connecting these mostly un-patchable devices to corporate Wi-Fi networks”.

Risks surrounding public Wi-Fi use were of clear concern too, with 92% of IT pros worried about company-owned devices connecting to public Wi-Fi networks. Due to this risk, many organizations are not moving fast towards deploying new IoT applications. They are holding plans and are hoping that the forthcoming WPA3 protocol might improve Wi-Fi security. 

So what best can you do to protect your data? The expert advice is as follows: “First and foremost should be the use of VPN’s; any traffic sent from your business device through a public Wi-Fi should be encrypted using a VPN. Try, where possible, to use SSL connections on websites that allow it, and ensure you have a good regularly updating internet security package installed on all devices. It won’t protect you 100%, but it will do most of the work for you in the daily defense”.

The identified issues have resulted in many vendors trying to create smart and safe new products. The new version of WiFi interface is much safer. One such new device providing safe and smart WiFi for users is Smart Safe Wifi and we find it to be a reliable new option.



Tags: IoT   WiFi Vulnerability   WPA2  

Contact Me

Online

Contact: Gaurav Prakash

Address: Palam Vihar, Gurugram, Haryana 122017, India

Contact Me Report Abuse

Error 404 - page not found

Ohh... You have requested the page that is no longer there.

View By Countries

We use cookies on our site to improve your experience

PLEASE READ CAREFULLY BEFORE USING THIS WEBSITE:

We use cookies on our site to improve your experience.This site uses cookies to store information on your computer or device. This policy explains how we use cookies and may be amended, from time to time, without notice. To ensure that you are using this site with full and up-to-date information of how we use cookies please review this policy regularly as any amended policy will be updated on the site. By using this site you agree to the placement of cookies on your computer and or device in accordance with the terms of this policy. If you do not wish to accept cookies from this site please either disable cookies or refrain from using this site.

What are Cookies?

A cookie is a text-only string of information that a website transfers to the cookie file of the browser on your computer's hard disk or other devices so that the website can recognize you when you revisit and remember certain information about you. This can include which pages you have visited, choices you have made from menus, any specific information you have entered into forms and the time and date of your visit.

Types of Cookies

There are two main types of cookies:

Session cookies: these are temporary cookies that expire at the end of a browser session; that is, when you leave the site. Session cookies allow the website to recognize you as you navigate between pages during a single browser session and allow you to use the website most efficiently. For example, session cookies enable a website to remember that a user has placed items in an online shopping basket.

Persistent cookies: in contrast to session cookies, persistent cookies are stored on your equipment between browsing sessions until expiry or deletion. They therefore enable the website to "recognize" you on your return remember your preferences and tailor services to you.

In addition to session cookies and persistent cookies, there may be other cookies which are set by the website which you have chosen to visit, such as this website, in order to provide us or third parties with information.

Our use of Cookies

We currently use, and may use in the future, the following types of cookies on this website.

We use session cookies to:

help us maintain security and verify your details whilst you use the website as you navigate from page to page, which enables you to avoid having to re-enter your details each time you enter a new page.

We use persistent cookies to:

help us recognize you as a unique user when you return to our website so that you do not have to input your details multiple times as you move between our pages or services

remember how you have customised your use of this site, such as your preferred currency and time zone

collect and compile anonymous, aggregated information for statistical and evaluation purposes to help us understand how users use the website and help us improve the structure of our website.

Many cookies are designed to give you optimal usage of the web. For example, we use cookies to enable you to improve your user experience when using our website, e.g. a cookie which recognizes if your browser supports specific technology features. This helps, for example, in enabling web pages to be loaded more quickly when you request the download of a large file.

In addition to cookies which send information to us, we also use cookies which collect information and send it to third parties. An example of this is Google Analytics. Please check the relevant third party website for more information about their use of cookies. Where this site allows such cookies to be set or you access other websites from this site using the links provided, the operators of these websites will use cookies in accordance with their own cookies policy, which may differ from ours.

As with first party cookies, you are able to block third party cookies through your browser settings.

Some of our cookies may collect and store your personal information, such as your name or email address. We are committed to respecting and protecting your privacy and will ensure that all personal information collected by us is kept and treated in accordance with our privacy policy.

Refusing Cookies on this Site

Most browsers are initially set to accept cookies. However, you have the ability to disable cookies if you wish, generally through changing your internet software browsing settings. It may also be possible to configure your browser settings to enable acceptance of specific cookies or to notify you each time a new cookie is about to be stored on your computer or device enabling you to decide whether to accept or reject the cookie. To manage your use of cookies there are various resources available to you, for example the "Help" section on your browser may assist you. You can also disable or delete the stored data used by technology similar to cookies, such as Local Shared Objects or Flash cookies, by managing your browser's "add-on settings" or visiting the website of its manufacturer. As our cookies allow you to access some of our website's essential features we recommend that you leave cookies enabled, otherwise, if cookies are disabled, it may mean that you experience reduced functionality or will be prevented from using this site altogether.