Collaborate Disseminate
Tens of millions of products ranging from airport surveillance cameras, sensors, networking equipment and IoT devices are vulnerable to a flaw that allows attacks to remotely gain control over devices or crash them. Continue reading Bad Code Library Triggers Devil’s Ivy Vulnerability in Millions of IoT Devices
Coding flaws evident in a popular open source software library known as gSOAP, which has been adopted in recent years by manufacturers of “smart devices,” could allow a hacker to remotely control and infect internet-connected hardware like security cameras with malware, according to research published Tuesday by IoT-focused cybersecurity firm Senrio. The findings are significant because they highlight a series of vulnerabilities in a common coding framework that is already widely used by technology manufacturers and embedded in deployed devices. The research underscores the security development gap in many Internet of Things devices. Such vulnerabilities already have contributed to the rise of massive botnets that can be used in crippling distributed denial-of-service attacks. In the case of an internet-connected video camera, the bug in gSOAP could be exploited by a hacker to install a backdoor implant, block an admin from making settings changes or to allow access to live video feeds. Senrio chief […]
The post A vulnerability in IoT software has opened a door into thousands of internet-connected devices appeared first on Cyberscoop.