Off the shelf IoT devices pose a massive security risk

The internet of things is one of the most exciting technologies that’s poised to become the next big thing. For the ones who are unaware, IoT is a network of interconnected devices that exchange data. A practical application of IoT is a network of home appliances that can include the coffee maker, refrigerator, geyser, and so on, to allow remote communication with them to suit the owner’s needs. In short, a user can instruct his coffee maker to keep coffee ready when he gets home from a hard day’s work.

However, not everything about IoT is as convenient as it seems. An investigator for Limited Results found out gaping holes in the security for user data in an IoT device that had been discarded. The device examined was a light bulb which contained the necessary connectivity hardware, however, after the chips were removed and attached to a computer for booting, it revealed the previous user’s wi-fi password and also the private RSA key. Such private information could easily be fished out from a discarded light bulb, picked up from someone’s trash can, or even stolen from someone’s porch.

The lack of any security in such devices is definitely alarming and could potentially open up several people’s private networks and expose tons of private data. Additionally, all of these devices support virtual assistants such as Amazon Alexa and Google Home. Users need to take necessary precautions like changing passwords regularly or completely destroying disposables devices.