Backdoor vulnerability discovered in popular IoT products

Consumer-grade IoT products can be easily manipulated by an attacker, used to steal an organisation s private information, and go undetected by traditional security solutions,” said Gunter Ollmann, CSO of Vectra Networks. While many of these devices are low-value in terms of hard costs, they can affect the security and integrity of the network, and teams need to keep an eye on them to reveal any signs of malicious behaviour.

Turning an IoT device into a backdoor essentially gives hackers 24×7 access to an organisation is network without needing to infect a laptop, workstation or server, all of which are usually under high scrutiny by firewalls, intrusion prevention systems and malware sandboxes, and typically run antivirus software that is updated regularly.