{"id":180659,"date":"2017-02-13T22:02:00","date_gmt":"2017-02-14T03:02:00","guid":{"rendered":"https:\/\/www.panix.com\/~msaroff\/40years\/2017\/02\/13\/the-internet-of-things-strikes-again\/"},"modified":"2017-02-13T22:02:00","modified_gmt":"2017-02-14T03:02:00","slug":"the-internet-of-things-strikes-again","status":"publish","type":"post","link":"https:\/\/www.panix.com\/~msaroff\/40years\/2017\/02\/13\/the-internet-of-things-strikes-again\/","title":{"rendered":"The Internet of Things Strikes Again"},"content":{"rendered":"<p>At an unnamed university, <a href=\"http:\/\/www.networkworld.com\/article\/3168763\/security\/university-attacked-by-its-own-vending-machines-smart-light-bulbs-and-5-000-iot-devices.html\">its network was taken down by its internet connected vending machines<\/a>:<\/p>\n<blockquote><p><span style=\"color: blue;\">Today\u2019s cautionary tale comes from Verizon\u2019s sneak peek (<a href=\"http:\/\/www.verizonenterprise.com\/resources\/reports\/rp_data-breach-digest-2017-sneak-peek_xg_en.pdf\">pdf<\/a>) of the <a href=\"http:\/\/www.verizonenterprise.com\/verizon-insights-lab\/data-breach-digest\/2016\/#2017_dbd\">2017 Data Breach Digest scenario<\/a>. It involves an unnamed university, seafood searches, and an IoT botnet; hackers used the university\u2019s own vending machines and other IoT devices to attack the university\u2019s network.<\/p>\n<p>Since the university\u2019s help desk had previously blown off student complaints about slow or inaccessible network connectivity, it was a mess by the time a senior member of the IT security team was notified. The incident is given from that team member\u2019s perspective; he or she suspected something fishy after detecting a sudden big interest in seafood-related domains.<\/p>\n<p>The \u201cincident commander\u201d noticed \u201cthe name servers, responsible for Domain Name Service (DNS) lookups, were producing high-volume alerts and showed an abnormal number of sub-domains related to seafood. As the servers struggled to keep up, legitimate lookups were being dropped\u2014preventing access to the majority of the internet.\u201d That explained the \u201cslow network\u201d issues, but not much else.<\/p>\n<p>The university then contacted the Verizon RISK (Research, Investigations, Solutions and Knowledge) Team and handed over DNS and firewall logs. The RISK team discovered the university\u2019s hijacked vending machines and 5,000 other IoT devices were making seafood-related DNS requests every 15 minutes.<\/span><\/p><\/blockquote>\n<p>Seafood, huh?<\/p>\n<p>Needless to say, there is something fishy about the Internet of Things.<sup>*<\/sup><\/p>\n<p>It&#8217;s a toxic mixture of marketing types and brogrammers, and until there there are real statutory requirements for people trying to make a buck off of things like internet enabled refrigeratures, stay away from this.<\/p>\n<p>Right now, these are trivial to hack into, and, at <b>best<\/b>, this makes them a listening device in your own home.<\/p>\n<p><sup>*<\/sup><span style=\"font-size: xx-small;\">Sorry for the pun.<\/span><sup>\u2020<\/sup><br \/><sup>\u2020<\/sup><span style=\"font-size: xx-small;\">Not really sorry.  Not one bit.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>At an unnamed university, its network was taken down by its internet connected vending machines: Today\u2019s cautionary tale comes from Verizon\u2019s sneak peek (pdf) of the 2017 Data Breach Digest scenario. It involves an unnamed university, seafood searches, and an IoT botnet; hackers used the university\u2019s own vending machines and other IoT devices to attack &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[],"tags":[588,367,382],"class_list":["post-180659","post","type-post","status-publish","format-standard","hentry","tag-fail","tag-internet","tag-technology"],"_links":{"self":[{"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/posts\/180659"}],"collection":[{"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/comments?post=180659"}],"version-history":[{"count":0,"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/posts\/180659\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/media?parent=180659"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/categories?post=180659"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.panix.com\/~msaroff\/40years\/wp-json\/wp\/v2\/tags?post=180659"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}