best web site builder

In April 2018, The CEO of the cybersecurity firm Darktrace says hackers are increasingly targeting unprotected "internet of things" devices, such as air-conditioning systems and CCTV, to get into corporate networks.  She told the WSJ CEO Council Conference that in one incident, a casino was hacked through the thermometer in its lobby aquarium. (1)

In August 2017, The Food and Drug Administration (FDA) has recalled about 500,000 internet-connected pacemakers manufactured by Abbot Health over hacking fears.  The FDA says that the vulnerability allows an unauthorised user to access a device using commercially available equipment and reprogram it. The hackers could then deliberately run the battery flat, or conduct “administration of inappropriate pacing”. Both could, in the worst case, result in the death of an affected patient. (2)

In January 2017, eight days before the inauguration of President Trump, hackers introduced a ramsomware into 70% of storage devices recording data from surveillance cameras in the city of Washington, forcing major citywide reinstallation efforts. according to the police and the city’s technology office. According to municipal authorities, the police cameras were unable to record between January 12 and January 15. (3)

In January 2017, a company that sells internet-connected teddy bears that allow kids and their far-away parents to exchange heartfelt messages left more than 800,000 customer credentials, as well as two million message recordings, totally exposed online for anyone to see and listen. (4)

In October 21 2016, 100,000 internet-connected devices were hijacked to be part of a massive DDoS against DNS provider Dyn that caused vast internet outage. (5)


(1) http://www.businessinsider.com/hackers-stole-a-casinos-database-through-a-thermometer-in-the-lobby-fish-tank-2018-4

(2) https://www.theguardian.com/technology/2017/aug/31/hacking-risk-recall-pacemakers-patient-death-fears-fda-firmware-update 

(3) https://www.bitdefender.com/box/blog/iot-news/70-washington-dcs-cctv-cameras-infected-ransomware/

(4) https://motherboard.vice.com/en_us/article/pgwean/internet-of-things-teddy-bear-leaked-2-million-parent-and-kids-message-recordings

(5) https://thehackernews.com/2016/10/ddos-attack-mirai-iot.html 

Why ?

Why connected objects are not secure when solutions on the internet exist and are widely used ?

 

  • FOCUS ON THE BUSINESS - IoT Manufacturer focuses on his own business functionalities with Time-to-market and cost constraints. Security is not part of his focus. 
  • LACK OF SECURITY EXPERTISE -  Security requires a complex expertise not present in the IoT players trades. A security expert addition to the team is expensive and, because the time-to-market pressure and lack of threat awareness, manufacturers decide to overpass the problem.  
  • LACK OF STANDARD SECURITY SOLUTION FOR IOT - Current security solutions must be resized and adapted to the constraints of IoT. IoT end-devices are not in any security perimeter. Thus, a conventional firewall can not be used for its protection. In addition, the solutions must be thin enough to be supported by connected objects which, for the most part, are extremely limited in terms of CPU, memory and connectivity.
  • LACK OF THREAT AWARENESS - It is not intuitive to understand the threats represented by the connection of an object to Internet. Often, the manufacturer thinks that only the data contained in its object can be threatened by its connection to the Net and just protects them or decides that they are not critical. He does not understand that his device can be a Trojan horse to penetrate the system (house, factory, company) or to serve as an army soldier of thousands of objects to attack highly sensitive targets on the Net ( DDoS)

EasySec Solutions allows users to enjoy the ultimate IoT opportunities while being protected from cyber-attacks by an end-to-end security approach. Thus, the devices can be deployed without introducing new vulnerabilities in the system. This technology can be applied in Smart City, Home Network and Smart Factory.

Address

Jerusalem, Israel

Contacts

Email: info@easysecsolutions.com