Tech Providers Need to Consider About Security of Internet Connected Devices

Tech Providers Need to Consider About Security of Internet Connected Devices
09.03.2017 12:30 pm

Tech Providers Need to Consider About Security of Internet Connected Devices

Security

Commenting on the security vulnerabilities uncovered in smartphones, internet-connected TVs and other devices, Martijn Verbree, partner in KPMG’s cyber security practice said:

“It may come as shock but security vulnerabilities exist in pretty much every internet connected device.  When internet connected devices are made, security may be an afterthought in the design process and not part of the initial thinking. Many connected TVs were designed to be TVs first and then with some computing functionality, an operating system, apps, a few sensors and Wi-Fi connection bolted onto it.

“The lack of security by design will change over time when the industry matures: we have already seen this take place with smart phones, which are now a lot better protected and better patched, although far from secure.

“The vulnerabilities uncovered pose a low risk to the general public at the moment.  However, you can imagine that a lot of security folks will try to reverse engineer it right now – including criminals, hostile nation states, universities etc.  With the exploits most likely requiring a piece of malware to be installed on the TV itself - either through physical access, or the consumer clicking on a bad link or by downloading an infected app – it makes it relatively hard to target specific individuals. 

“Fixing this will be hard and the most likely fix will be via a software patch. But the challenges are, what other vulnerabilities already exist and how manufacturers get the patches out?  Yes, some TVs are internet-connected and could have the firmware updated remotely.  However this typically requires some consumer intervention and that being manually done by a consumer isn’t easy to achieve.

“Vendors will need to take responsibility and provide fixes to vulnerable devices, even if they’re over their normal warranty period.”

Related News

Retail cash automation market booms as global installations surpass 700,000

Latest research shows retailers across the world are investing in technology that improves cash management and boosts security

Market outside Japan... Read more »

Experian partners with Global Data Consortium to bolster international customer identity verification

Experian and identity verification provider Global Data Consortium (GDC) have today announced a new partnership which will transform customer onboarding journeys for both... Read more »

FICO Offers Free Cyber Risk Score 90-Day Trial in Europe

Cyber exposure is one of the most rapidly growing risks in today’s digital world. Almost daily, the media report on companies that have suffered data breaches where criminals... Read more »

Leading Firms Collaborate with Mastercard to Further Secure Open Banking Ecosystem

Mastercard announces three key financial firms as the latest companies to start using Mastercard Open Banking Protect, safeguarding organisations who manage... Read more »

iProov to provide biometric technology to challenger bank Knab, part of AEGON

Today, iProov is proud to announce that its technology is to be deployed by Dutch challenger bank Knab, to provide an effortless online biometric experience to its nearly 500,... Read more »

FICO Awarded 13 New Patents for Responsible AI, Fraud and Decision Management

Silicon Valley analytic software firm FICO has been awarded 13 new patents related to fraud, artificial intelligence (AI) and decision management. In total, FICO currently... Read more »

Magazine
ALL
Free Newsletter Sign-up
+44 (0) 208 819 32 53 +44 (0) 173 261 71 47
Download Our Mobile App
Financial It Youtube channel